Download
| Alert*
oval:org.secpod.oval:def:93206
batik: SVG Library Several security issues were fixed in Apache Batik. oval:org.secpod.oval:def:708199 batik: SVG Library Several security issues were fixed in Apache Batik. oval:org.secpod.oval:def:610228 It was discovered that Apache Batik, a SVG library for Java, allowed attackers to run arbitrary Java code by processing a malicious SVG file. oval:org.secpod.oval:def:1601655 Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Server-Side Request Forgery ... oval:org.secpod.oval:def:1701212 Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Server-Side Request Forgery ... oval:org.secpod.oval:def:88423 It was discovered that Apache Batik, a SVG library for Java, allowed attackers to run arbitrary Java code by processing a malicious SVG file. oval:org.secpod.oval:def:3302459 Security update for xmlgraphics-batik |