java-xmlgraphics-commons

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Common components between FOP and Batik
Version 2.10-1 [extra]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1618 2.4-2 2.6-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2020-11988 AVG-1618 Medium Yes Url request injection
The Apache XML Graphics Commons library before version 2.6 is vulnerable to server-side request forgery (SSRF) via the XMPParser that allow an attacker to...