Описание
cgi-bin/xmlstatus.cgi in Güralp MAN-EAM-0003 3.2.4 is vulnerable to an XML External Entity (XXE) issue via XML file upload, which leads to local file disclosure.
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- Exploit
- ExploitThird Party AdvisoryVDB Entry
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:guralp:man-eam-0003:3.2.4:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.83277
Высокий
7.5 High
CVSS3
Дефекты
CWE-611
CWE-611
Связанные уязвимости
CVSS3: 7.5
github
больше 2 лет назад
cgi-bin/xmlstatus.cgi in Güralp MAN-EAM-0003 3.2.4 is vulnerable to an XML External Entity (XXE) issue via XML file upload, which leads to local file disclosure.
EPSS
Процентиль: 99%
0.83277
Высокий
7.5 High
CVSS3
Дефекты
CWE-611
CWE-611