Description
An XML External Entity (XXE) vulnerability exists in wuta jox 1.16 in the readObject method in JOXSAXBeanInput.
Remediation
References
https://novysodope.github.io/2021/10/29/64/
Related Vulnerabilities
CVE-2022-1291 Vulnerability in npm package tableexport.jquery.plugin
CVE-2021-26540 Vulnerability in npm package sanitize-html
CVE-2022-43409 Vulnerability in maven package org.jenkins-ci.plugins.workflow:workflow-support
CVE-2021-32855 Vulnerability in npm package vditor
CVE-2020-2245 Vulnerability in maven package org.jenkins-ci.plugins:valgrind