VYPR

Jabref

by Jabref

Source repositories

CVEs (1)

  • CVE-2018-1000652CriAug 20, 2018
    risk 0.65cvss 10.0epss 0.02

    JabRef version <=4.3.1 contains a XML External Entity (XXE) vulnerability in MsBibImporter XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted…