VYPR

Maven package

org.jboss.resteasy/resteasy-jaxb-provider

pkg:maven/org.jboss.resteasy/resteasy-jaxb-provider

Vulnerabilities (1)

  • CVE-2011-5245Nov 23, 2012
    affected < 2.3.2fixed 2.3.2

    The readFrom function in providers.jaxb.JAXBXmlTypeProvider in RESTEasy before 2.3.2 allows remote attackers to read arbitrary files via an external entity reference in a Java Architecture for XML Binding (JAXB) input, aka an XML external entity (XXE) injection attack, a similar