XML External Entity Archives • Daily CyberSecurity

CISA KEV Alert: GeoServer XXE Flaw Under Active Attack Risks Data Theft & Internal Network Scanning CISA active exploit catalog known exploited vulnerabilities ActiveMQ RCE CVE-2026-34197 CISA KEV Catalog Actively Exploited Vulnerabilities CISA KEV Catalog CVE-2025-37164 GeoServer XXE, CISA KEV FortiWeb SQLi, CISA KEV Critical Vulnerabilities CVE-2024-20953

Do Son December 12, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting the widely used OSGeo...

Do Son December 1, 2025

The maintainers of GeoServer have issued an important security advisory regarding a high-severity vulnerability that could allow...

Critical Apache Jackrabbit Flaw (CVE-2025-53689): XXE Attacks Allow Data Exfiltration & DoS Apache Jackrabbit, JNDI injection CVE-2023-37895 Apache Jackrabbit, XXE Vulnerability

Do Son July 14, 2025

A critical XML External Entity (XXE) vulnerability has been identified in multiple versions of Apache Jackrabbit, a...

Do Son June 21, 2025

IBM has issued a security bulletin addressing three critical vulnerabilities in its QRadar SIEM platform, a widely...

Do Son June 10, 2025

The GeoTools project, a popular open-source Java library used for geospatial data processing, has issued a critical...

9.8 CVSS Score: Rockwell Automation Impacted by High-Severity log4net Vulnerability CVE-2024-5988 and CVE-2024-5989 Rockwell Automation vulnerability CVE-2018-1285

Do Son May 17, 2025

Rockwell Automation has issued a critical security advisory affecting the FactoryTalk Historian-ThingWorx Connector, due to a third-party...

XML External Entity