Bedework/bw-webdav
GitHub
Releases26
Frequency8 months 1 week
Last Release
Stars4
Bedework: WebDAV
CVE History
| CVE | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|
| — | 5 MEDIUM | ||
Apereo Bedework bw-webdav before 4.0.3 allows XXE attacks, as demonstrated by an invite-reply document that reads a local file, related to webdav/servlet/common/MethodBase.java and webdav/servlet/common/PostRequestPars.java. | |||