VYPR

rpm package

suse/dom4j&distro=SUSE Linux Enterprise Software Development Kit 11 SP4

pkg:rpm/suse/dom4j&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4

Vulnerabilities (1)

  • CVE-2018-1000632HigAug 20, 2018
    affected < 1.6.1-8.3.8.1fixed 1.6.1-8.3.8.1

    dom4j version prior to version 2.1.1 contains a CWE-91: XML Injection vulnerability in Class: Element. Methods: addElement, addAttribute that can result in an attacker tampering with XML documents through XML injection. This attack appear to be exploitable via an attacker specify