Julien M.

1 exploit Active since May 2020
CVE-2020-12642 WRITEUP HIGH WRITEUP
ReportPortal service-api 3.1.0-4.3.11 and 5.0.0-5.1.0 - XML External Entity Injection via JUnit XML Launch Import
An issue was discovered in service-api before 4.3.12 and 5.x before 5.1.1 for Report Portal. It allows XXE, with resultant secrets disclosure and SSRF, via JUnit XML launch import.
CVSS 7.5