Skip to main content

Wild Web Developer

2 CVEs product

Monthly

CVE-2019-18213 HIGH POC PATCH This Week

XML Language Server (aka lsp4xml) before 0.9.1, as used in Red Hat XML Language Support (aka vscode-xml) before 0.9.1 for Visual Studio and other products, allows XXE via a crafted XML document, with. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XXE SSRF Red Hat Xml Server Project Wild Web Developer +1
NVD GitHub
CVSS 3.1
8.8
EPSS
2.0%
CVE-2019-18212 MEDIUM POC PATCH This Month

XMLLanguageService.java in XML Language Server (aka lsp4xml) before 0.9.1, as used in Red Hat XML Language Support (aka vscode-xml) before 0.9.1 for Visual Studio and other products, allows a remote. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Java Path Traversal Red Hat Xml Server Project Wild Web Developer +1
NVD GitHub
CVSS 3.1
6.5
EPSS
2.8%
EPSS 2% CVSS 8.8
HIGH POC PATCH This Week

XML Language Server (aka lsp4xml) before 0.9.1, as used in Red Hat XML Language Support (aka vscode-xml) before 0.9.1 for Visual Studio and other products, allows XXE via a crafted XML document, with. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XXE SSRF Red Hat +3
NVD GitHub
EPSS 3% CVSS 6.5
MEDIUM POC PATCH This Month

XMLLanguageService.java in XML Language Server (aka lsp4xml) before 0.9.1, as used in Red Hat XML Language Support (aka vscode-xml) before 0.9.1 for Visual Studio and other products, allows a remote. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Java Path Traversal Red Hat +3
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy