jersey
jersey copied to clipboard

javaee

→

Metadata

This is no longer the active Jersey repository. Please see the README.md

Reame
Issues

Results 101 jersey issues

Sort by recently updated

SAXParserFactory doesn't disable XML entity expansion

4

The DocumentBuilderFactory and XmlInputFactory providers aren't vulnerable to Billion Laughs attacks (exponential entity expansion) by disabling entity expansion altogether. But the SAXParserFactory provider is only disabling external entities, and it's...

glassfishrobot

Type: Bug

Priority: Critical

Component: security

‹
1
2
3
4
5
6
7
8
9
10
11

About

This is no longer the active Jersey repository. Please see the README.md

2.9k

Stars

2.4k

Forks

Watchers

Owner

javaee

← Metadata

2.9k

Stars

2.4k

Forks

Watchers

Owner

javaee

Metadata

This is no longer the active Jersey repository. Please see the README.md

Back

jersey jersey copied to clipboard

Metadata

SAXParserFactory doesn't disable XML entity expansion

← Metadata

Owner

Metadata

jersey
jersey copied to clipboard