Davenport before 0.9.10 allows attackers to cause a denial of service (resource consumption) via (1) a very large XML file or (2) entity expansion attacks.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Davenport | Davenport | 0.9.5 | 0.9.5 |
Davenport | Davenport | 0.9.0 | 0.9.0 |
Davenport | Davenport | 0.9.8 | 0.9.8 |
Davenport | Davenport | 0.9.6 | 0.9.6 |
Davenport | Davenport | 0.8.0 | 0.8.0 |
Davenport | Davenport | 0.9.9 | 0.9.9 |
Davenport | Davenport | 0.9.7 | 0.9.7 |