exploitDog

CVE-2018-16252

Опубликовано: 05 сент. 2018

Источник: nvd

CVSS3: 3.3

CVSS2: 2.1

EPSS Низкий

Описание

FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection.

Ссылки

http://hyp3rlinx.altervista.org/advisories/FSPRO-LABS-EVENT-LOG-EXPLORER-XML-INJECTION-INFO-DISCLOSURE.txt
Third Party Advisory
http://packetstormsecurity.com/files/149195/FsPro-Labs-Event-Log-Explorer-4.6.1.2115-XML-Injection.html
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/45319/
Exploit
Third Party Advisory
VDB Entry
http://hyp3rlinx.altervista.org/advisories/FSPRO-LABS-EVENT-LOG-EXPLORER-XML-INJECTION-INFO-DISCLOSURE.txt
Third Party Advisory
http://packetstormsecurity.com/files/149195/FsPro-Labs-Event-Log-Explorer-4.6.1.2115-XML-Injection.html
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/45319/
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:fspro:event_log_explorer:4.6.1.2115:*:*:*:*:*:*:*

EPSS

Процентиль: 76%

0.0092

Низкий

3.3 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-611

Связанные уязвимости

GHSA-g939-wpmq-66q4

CVSS3: 3.3

github

больше 3 лет назад

FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection.

EPSS

Процентиль: 76%

0.0092

Низкий

3.3 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-611