Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in weixin-java-tools v3.3.0. There is an XXE vulnerability in the getXmlDoc method of the BaseWxPayResult.java file. NOTE: this issue exists because of an incomplete fix for CVE-2018-20318.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
weixin-java-tools 代码问题漏洞
Vulnerability Description
weixin-java-tools是一款基于Java的微信软件开发工具包。该产品用于支持微信支付、开放平台、公众号、企业微信/企业号和小程序等微信功能的后端开发。 weixin-java-tools 3.3.0版本中的BaseWxPayResult.java文件的getXmlDoc方法存在代码问题漏洞,该漏洞源于网络系统或产品的代码开发过程中存在设计或实现不当的问题。
CVSS Information
N/A
Vulnerability Type
N/A