CWE-91 · XML Injection (Blind XPath Injection)
128 CVEs classified under CWE-91 (XML Injection (Blind XPath Injection)). Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-4140 | Critical | 10.0 | 2022-12-22 | It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox. This vulnerability affects Firefox ESR < 91.5, Firefox < 96… |
CVE-2024-51136 | Critical | 9.8 | 2024-11-04 | An XML External Entity (XXE) vulnerability in Dmoz2CSV in openimaj v1.3.10 allows attackers to access sensitive information or execute arbitrary code via suppl… |
CVE-2023-43187 | Critical | 9.8 | 2023-09-27 | A remote code execution (RCE) vulnerability in the xmlrpc.php endpoint of NodeBB Inc NodeBB forum software prior to v1.18.6 allows attackers to execute arbitra… |
CVE-2019-19450 | Critical | 9.8 | 2023-09-20 | paraparser in ReportLab before 3.5.31 allows remote code execution because start_unichar in paraparser.py evaluates untrusted user input in a unichar element i… |
CVE-2021-37154 | Critical | 9.8 | 2021-08-25 | In ForgeRock Access Management (AM) before 7.0.2, the SAML2 implementation allows XML injection, potentially enabling a fraudulent SAML 2.0 assertion. |
CVE-2020-29128 | Critical | 9.8 | 2020-11-26 | petl before 1.68, in some configurations, allows resolution of entities in an XML document. |
CVE-2020-25216 | Critical | 9.8 | 2020-09-17 | yWorks yEd Desktop before 3.20.1 allows code execution via an XSL Transformation when using an XML file in conjunction with a custom stylesheet. |
CVE-2020-11535 | Critical | 9.8 | 2020-04-15 | An issue was discovered in ONLYOFFICE Document Server 5.5.0. An attacker can craft a malicious .docx file, and exploit XML injection to enter an attacker-contr… |
CVE-2015-6970 | Critical | 9.8 | 2020-02-18 | The web interface in Bosch Security Systems NBN-498 Dinion2X Day/Night IP Cameras with H.264 Firmware 4.54.0026 allows remote attackers to conduct XML injectio… |
CVE-2020-0646 | Critical | 9.8 | 2020-01-14 | A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka '.NET Framework Remote Code Execution Inje… |
CVE-2019-8158 | Critical | 9.8 | 2019-11-06 | An XPath entity injection vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An attacker can craft a GET request to p… |
CVE-2013-4857 | Critical | 9.8 | 2019-10-25 | D-Link DIR-865L has PHP File Inclusion in the router xml file. |
CVE-2019-17626 | Critical | 9.8 | 2019-10-16 | ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with '<span color="… |
CVE-2019-16941 | Critical | 9.8 | 2019-09-28 | NSA Ghidra through 9.0.4, when experimental mode is enabled, allows arbitrary code execution if the Read XML Files feature of Bit Patterns Explorer is used wit… |
CVE-2019-14277 | Critical | 9.8 | 2019-07-26 | Axway SecureTransport 5.x through 5.3 (or 5.x through 5.5 with certain API configuration) is vulnerable to unauthenticated blind XML injection (and XXE) in the… |
CVE-2013-7429 | Critical | 9.8 | 2017-09-14 | The Googlemaps plugin before 3.1 for Joomla! allows remote attackers to conduct XML injection attacks via the url parameter to plugin_googlemap2_proxy.php. |
CVE-2020-8479 | Critical | 9.4 | 2020-04-29 | For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI… |
CVE-2021-38948 | Critical | 9.1 | 2021-11-02 | IBM InfoSphere Information Server 11.7 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit… |
CVE-2021-36033 | Critical | 9.1 | 2021-09-01 | Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an XML Injection vulnerability in the Widgets Mod… |
CVE-2021-36028 | Critical | 9.1 | 2021-09-01 | Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an XML Injection vulnerability when saving a conf… |