定价企业版

CVE-2021-3878

9.8CRITICAL

corenlp is vulnerable to Improper Restriction of XML External Entity Reference

发布于: 10/15/2021更新于: 9/8/2025

在NVD查看在MITRE查看

描述

corenlp is vulnerable to Improper Restriction of XML External Entity Reference

AI分析AI驱动

受影响产品

stanfordcorenlp

参考资料

https://github.com/stanfordnlp/corenlp/commit/e5bbe135a02a74b952396751ed3015e8b8252e99
PatchThird Party Advisory
https://huntr.dev/bounties/a11c889b-ccff-4fea-9e29-963a23a63dd2
ExploitPatchThird Party Advisory
https://github.com/stanfordnlp/corenlp/commit/e5bbe135a02a74b952396751ed3015e8b8252e99
PatchThird Party Advisory
https://huntr.dev/bounties/a11c889b-ccff-4fea-9e29-963a23a63dd2
ExploitPatchThird Party Advisory