1 results (0.007 seconds)
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-13439
https://notcve.org/view.php?id=CVE-2018-13439
08 Jul 2018 — WXPayUtil in WeChat Pay Java SDK allows XXE attacks involving a merchant notification URL. WXPayUtil en WeChat Pay Java SDK permite ataques XEE (XML External Entity) relacionados con una URL de notificación merchant. • https://packetstormsecurity.com/files/148390/WeChat-Pay-SDK-XXE-Injection.html • CWE-611: Improper Restriction of XML External Entity Reference •