An issue was discovered in MediaWiki through 1.37.2. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Information Disclosure
Mediawiki
NVD
CVSS 3.1
7.5
EPSS
1.3%
Multiple components in Apache NiFi 0.0.1 to 1.16.0 do not restrict XML External Entity references in the default configuration. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Apache
XXE
Nifi
NVD
CVSS 3.1
7.5
EPSS
2.4%