Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
An XML external entity (XXE) injection vulnerability exists in the Nutch DmozParser
Vulnerability Description
An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also known as XXE) is a web security vulnerability that allows an attacker to interfere with an application's processing of XML data. It often allows an attacker to view files on the application server filesystem, and to interact with any back-end or external systems that the application itself can access. This issue is fixed in Apache Nutch 1.18.
CVSS Information
N/A
Vulnerability Type
XML外部实体引用的不恰当限制(XXE)
Vulnerability Title
Apache Nutch 代码问题漏洞
Vulnerability Description
Apache Nutch是Apache基金会的一个基于Java的可扩展的爬虫软件。 Apache Nutch 1.18之前版本存在代码问题漏洞,该漏洞允许攻击者查看应用程序服务器文件系统上的文件,并与应用程序本身可以访问的任何后端或外部系统进行交互。
CVSS Information
N/A
Vulnerability Type
N/A