CVE
CVE-2016-7051
jackson-dataformat-xml vulnerable to server side request forgery (SSRF)
Versions of jackson-dataformat-xml) prior to 2.7.8 and prior to 2.8.4 allow remote attackers to conduct server-side request forgery (SSRF) attacks via vectors related to a DTD.
Endor Patches
Patch Name
Vulnerabilities fixed
Lines of Code Changed