Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:mchange:c3p0:0.9.5.2:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2018-20433 |
c3p0 0.9.5.2 allows XXE in extractXmlConfigFromInputStream in com/mchange/v2/c3p0/cfg/C3P0ConfigXmlUtils.java during initialization. Published: December 24, 2018; 8:29:00 AM -0500 |
V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH |