org.apache.taglibs:taglibs-standard@1.2.1 vulnerabilities
-
latest version
1.2.5
-
latest non vulnerable version
-
first published
10 years ago
-
latest version published
9 years ago
-
licenses detected
- [1.2.1,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.apache.taglibs:taglibs-standard package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.apache.taglibs:taglibs-standard is an open source package for JSP(tm) Tag Libraries. Affected versions of this package are vulnerable to XML External Entity (XXE) Injection. Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity (XXE) attacks via a crafted XSLT extension in a How to fix XML External Entity (XXE) Injection? Upgrade |
[,1.2.3)
|