Vulnerabilities > Pippo > Pippo > 1.12.0

DATE CVE VULNERABILITY TITLE RISK
2019-06-12 CVE-2019-5442 XML Entity Expansion vulnerability in Pippo 1.12.0
XML Entity Expansion (Billion Laughs Attack) on Pippo 1.12.0 results in Denial of Service.Entities are created recursively and large amounts of heap memory is taken.
network
low complexity
pippo CWE-776
5.0
5.0