Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2024-28168
- EPSS 0.52%
- Published 09.10.2024 12:15:02
- Last modified 16.07.2025 17:19:18
Improper Restriction of XML External Entity Reference ('XXE') vulnerability in Apache XML Graphics FOP. This issue affects Apache XML Graphics FOP: 2.9. Users are recommended to upgrade to version 2.10, which fixes the issue.
7.9
CVE-2017-5661
- EPSS 2.11%
- Published 18.04.2017 14:59:00
- Last modified 20.04.2025 01:37:25
In Apache FOP before 2.2, files lying on the filesystem of the server which uses FOP can be revealed to arbitrary users who send maliciously formed SVG files. The file types that can be shown depend on the user context in which the exploitable applic...
1