CVE-2018-1000830

Published December 20th, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

XR3Player version <= V3.124 contains a XML External Entity (XXE) vulnerability in Playlist parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning.

goxr3plus/XR3Player

🎧 🎼 The MOST ADVANCED JavaFX Media Player

GitHub

767