Castor Project » Castor : Security Vulnerabilities, CVEs,
The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.
Max CVSS
4.3
EPSS Score
1.62%
Published
2014-06-11
Updated
2021-10-20
1 vulnerabilities found