exploitDog

GHSA-7h6c-r5x6-jgc8

Опубликовано: 18 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

agorum Software GmbH Agorum core open v11.9.2 & v11.10.1 was discovered to contain an XML External Entity (XXE) via the RSSReader endpoint. This vulnerability allows attackers to access sensitive data via providing a crafted XML input.

agorum Software GmbH Agorum core open v11.9.2 & v11.10.1 was discovered to contain an XML External Entity (XXE) via the RSSReader endpoint. This vulnerability allows attackers to access sensitive data via providing a crafted XML input.

Ссылки

EPSS

Процентиль: 6%

0.00026

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-611

Связанные уязвимости

CVE-2025-52162

CVSS3: 6.5

nvd

7 месяцев назад

agorum Software GmbH Agorum core open v11.9.2 & v11.10.1 was discovered to contain an XML External Entity (XXE) via the RSSReader endpoint. This vulnerability allows attackers to access sensitive data via providing a crafted XML input.

EPSS

Процентиль: 6%

0.00026

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-611