VYPR

Maven package

org.springframework.ws/spring-xml

pkg:maven/org.springframework.ws/spring-xml

Vulnerabilities (1)

  • CVE-2019-3773Jan 18, 2019
    affected < 2.4.4fixed 2.4.4

    Spring Web Services, versions 2.4.3, 3.0.4, and older unsupported versions of all three projects, were susceptible to XML External Entity Injection (XXE) when receiving XML data from untrusted sources.