VYPR

Libxmljs2

by Marudor

npm: libxmljs2

Source repositories

CVEs (2)

  • CVE-2024-34394HigMay 2, 2024
    risk 0.53cvss 8.1epss 0.01

    libxmljs2 is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking the namespaces() function (which invokes XmlNode::get_local_namespaces()) on a grand-child of a node that refers to an entity. This vulnerability can lead to denial of…

  • CVE-2024-34393HigMay 2, 2024
    risk 0.53cvss 8.1epss 0.01

    libxmljs2 is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking a function on the result of attrs() that was called on a parsed node. This vulnerability might lead to denial of service (on both 32-bit systems and 64-bit systems),…