org.opencastproject:opencast-userdirectory@7.8 vulnerabilities
-
latest version
15.4
-
latest non vulnerable version
-
first published
5 years ago
-
latest version published
3 months ago
-
licenses detected
- [0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.opencastproject:opencast-userdirectory package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
Affected versions of this package are vulnerable to XML External Entity (XXE) Injection. An attacker could easily execute a (seemingly permanent) denial of service attack via a billion laughs attack (XML bomb). To exploit this, users need to have ingest privileges, limiting the group of potential attackers. How to fix XML External Entity (XXE) Injection? Upgrade |
[,9.6)
|