Количество 2
Количество 2
CVE-2017-15280
больше 8 лет назад
XML external entity (XXE) vulnerability in Umbraco CMS before 7.7.3 allows attackers to obtain sensitive information by reading files on the server or sending TCP requests to intranet hosts (aka SSRF), related to Umbraco.Web/umbraco.presentation/umbraco/dialogs/importDocumenttype.aspx.cs.
CVSS3: 5.5
EPSS: Низкий
GHSA-h2vq-7gf2-qw9v
больше 3 лет назад
Umbraco CMS XXE Vulnerability
CVSS3: 5.5
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2017-15280 XML external entity (XXE) vulnerability in Umbraco CMS before 7.7.3 allows attackers to obtain sensitive information by reading files on the server or sending TCP requests to intranet hosts (aka SSRF), related to Umbraco.Web/umbraco.presentation/umbraco/dialogs/importDocumenttype.aspx.cs. | CVSS3: 5.5 | 0% Низкий | больше 8 лет назад |
| GHSA-h2vq-7gf2-qw9v Umbraco CMS XXE Vulnerability | CVSS3: 5.5 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20