Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-611

CWE-611

Improper Restriction of XML External Entity Reference

Parent: CWE-610 - Externally Controlled Reference to a Resource in Another Sphere

The product processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.

1,228 vulnerabilities with CWE-611

CVE-2024-22024 HIGH

Ivanti Connect Secure - XXE

CVE-2024-24743 HIGH

SAP Netweaver Application Server Java - XXE

CVE-2024-1167 MEDIUM

SEW-EURODRIVE MOVITOOLS MotionStudio - Info Disclosure

CVE-2024-22380 MEDIUM

Electronic Delivery Check System - XXE

CVE-2024-21796 MEDIUM

Dfeg Electronic Deliverables Creation Support Tool < 1.0.4 - XXE

CVE-2024-21765 MEDIUM

Cals-ed Electronic Delivery Check System < 11.0.0 - XXE

CVE-2024-23525 MEDIUM

Tozt Spreadsheet < 0.30 - XXE

CVE-2023-7307 HIGH

Sangfor Behavior Management System - XXE Injection

CVE-2023-38693 CRITICAL

Lucee <5.4.3.2-5.3.9.173 - RCE

CVE-2023-47160 HIGH

IBM Cognos Controller < 11.0.1.4 - XXE

CVE-2023-24466 HIGH

OpenText iManager <3.2.6.0200 - XSS

CVE-2023-37233 HIGH

Loftware Spectrum < 4.6_hf14 - XXE

CVE-2023-48362 HIGH

Apache Drill < 1.21.2 - XXE

CVE-2023-50304 HIGH

IBM Engineering Requirements Management Doors - XXE

CVE-2023-49110 HIGH

Kiuwan - XML External Entity Injection

CVE-2023-45192 HIGH

IBM Doors Next - XXE

CVE-2023-51605 MEDIUM

Honeywell Saia PG5 Controls Suite - Info Disclosure

CVE-2023-51604 MEDIUM

Honeywell Saia PG5 Controls Suite - Info Disclosure

CVE-2023-51602 MEDIUM

Honeywell Saia PG5 Controls Suite - Info Disclosure

CVE-2023-51601 MEDIUM

Honeywell Saia PG5 Controls Suite - Info Disclosure

CVE-2023-51600 MEDIUM

Honeywell Saia PG5 Controls Suite - Info Disclosure

CVE-2023-51591 HIGH

Voltronic Power ViewPower Pro - Info Disclosure

CVE-2023-44412 HIGH

Dlink D-view 8 - XXE

CVE-2023-42035 MEDIUM

Visualware Myconnection Server - XXE

CVE-2023-40507 HIGH

LG Simple Editor - Info Disclosure

Previous Page 10 of 50 Next

Details

Vulnerabilities 1,228

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy