Apache: >> Xmlgraphics Commons >> 1.5 Security Vulnerabilities
Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Users should upgrade to 2.6 or later.
CVSS Score
8.2
EPSS Score
0.001
Published
2021-02-24