CVE-2024-28039

Published March 18th, 2024

View on NVD ↗

CVSS v3

5.8

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

Improper restriction of XML external entity references vulnerability exists in FitNesse all releases, which allows a remote unauthenticated attacker to obtain sensitive information, alter data, or cause a denial-of-service (DoS) condition.

unclebob/fitnesse

FitNesse -- The Acceptance Test Wiki

GitHub

2.11K