As reported by Sonar
pmouawad pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/jmeter.git commit d467f5368f65aca65d6ebd81f3d9fb7bec4967b4 Author: pmouawad <p.mouawad@ubik-ingenierie.com> AuthorDate: Tue Oct 1 10:45:56 2019 +0200 Bug 63793 - Fix unsecure XML Parsing --- .../org/apache/jmeter/assertions/XMLAssertion.java | 6 +++++- .../apache/jmeter/assertions/XMLSchemaAssertion.java | 3 ++- .../org/apache/jmeter/gui/action/SchematicView.java | 2 ++ .../jmeter/gui/action/template/TemplateManager.java | 2 ++ .../main/java/org/apache/jmeter/util/XPathUtil.java | 18 ++++++++++++------ .../apache/jmeter/functions/XPathFileContainer.java | 5 ++++- .../protocol/http/proxy/DefaultSamplerCreator.java | 2 ++ .../jms/sampler/render/ObjectMessageRenderer.java | 1 + xdocs/changes.xml | 11 +++++++++++ 9 files changed, 41 insertions(+), 9 deletions(-) pmouawad pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/jmeter.git commit bccc3e05760930ab210da78feccb68f8830da6c9 Author: pmouawad <p.mouawad@ubik-ingenierie.com> AuthorDate: Tue Oct 1 11:23:29 2019 +0200 Add test for unsecure XML loading --- .../java/org/apache/jmeter/assertions/XMLAssertion.java | 4 +--- .../org/apache/jmeter/assertions/XmlAssertionTest.java | 14 ++++++++++++++ 2 files changed, 15 insertions(+), 3 deletions(-)
This issue has been migrated to GitHub: https://github.com/apache/jmeter/issues/5176