Vulnerabilities > CVE-2020-26710 - XXE vulnerability in Easy-Parse Project Easy-Parse 0.1.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
easy-parse v0.1.1 was discovered to contain a XML External Entity Injection (XXE) vulnerability which allows attackers to execute arbitrary code via a crafted XML file.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |