← Back to CVE List
CVE-2018-20433
Published:
2018-12-24T13:29Z
Last Modified:
2024-11-21T04:01Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
c3p0 0.9.5.2 allows XXE in extractXmlConfigFromInputStream in com/mchange/v2/c3p0/cfg/C3P0ConfigXmlUtils.java during initialization. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt