Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2018-19530 | 1 Httl Project | 1 Httl | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
| HTTL (aka Hyper-Text Template Language) through 1.0.11 allows remote command execution because the decodeXml function uses XStream unsafely when configured with an xml.codec=httl.spi.codecs.XstreamCodec setting. | |||||
| CVE-2018-19531 | 1 Httl Project | 1 Httl | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
| HTTL (aka Hyper-Text Template Language) through 1.0.11 allows remote command execution because the decodeXml function uses java.beans.XMLEncoder unsafely when configured without an xml.codec= setting. | |||||