batik:batik-transcoder@1.6-1 vulnerabilities
-
latest version
1.6-1
-
first published
18 years ago
-
latest version published
18 years ago
-
licenses detected
- [1.5,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the batik:batik-transcoder package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable to XML External Entity (XXE) Injection in the SVG to PNG and JPG conversion classes which allows remote attackers to read arbitrary files or cause a denial of service via a crafted SVG file. |
[,1.7]
|