Vulnerabilities > Eclecticiq

DATE	CVE	VULNERABILITY TITLE	RISK
2020-10-17	CVE-2020-27197	Server-Side Request Forgery (SSRF) vulnerability in multiple products TAXII libtaxii through 1.1.117, as used in EclecticIQ OpenTAXII through 0.2.0 and other products, allows SSRF via an initial http:// substring to the parse method, even when the no_network setting is used for the XML parser. network low complexity libtaxii-project eclecticiq CWE-918 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.

Vulnerabilities > Eclecticiq {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Eclecticiq"}]}

Vulnerabilities > Eclecticiq