Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
An XML external entity (XXE) injection vulnerability exists in Apache Any23 StreamUtils.java
Vulnerability Description
An XML external entity (XXE) injection vulnerability was discovered in the Any23 StreamUtils.java file and is known to affect Any23 versions < 2.5. XML external entity injection (also known as XXE) is a web security vulnerability that allows an attacker to interfere with an application's processing of XML data. It often allows an attacker to view files on the application server filesystem, and to interact with any back-end or external systems that the application itself can access.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Anything To Triples 代码问题漏洞
Vulnerability Description
Anything To Triples(any23)是美国阿帕奇(Apache)基金会的一个应用软件。一个库、一个 Web 服务和一个命令行工具,可从各种 Web 文档中提取 RDF 格式的结构化数据。 Anything To Triples 存在代码问题漏洞,该漏洞源于Any23 StreamUtils.java 文件中发现了一个 XML 外部实体 (XXE) 注入漏洞。
CVSS Information
N/A
Vulnerability Type
N/A