Convertigo TwsCachedXPathAPI Commons-JXPath API Usage Restriction Vulnerability

Vulnerability

A vulnerability exists in Convertigo versions through 8.3.4 within the TwsCachedXPathAPI component, where there is insufficient restriction on the use of commons-jxpath APIs. This lack of limitation could potentially be exploited, although the specific implications are not detailed.

Impact

The vulnerability could lead to unintended consequences from unrestricted access to commons-jxpath APIs, potentially allowing for manipulation or misuse of XPath evaluations or expressions.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

0.6

exploitability

6.5

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

0.6

exploitability

6.5

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Convertigo TwsCachedXPathAPI Commons-JXPath API Usage Restriction Vulnerability

Vulnerability

Impact

Affected Products

Convertigo

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating