mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-30 18:56:19 +00:00
680 B
680 B
CVE-2019-13625
Description
NSA Ghidra before 9.0.1 allows XXE when a project is opened or restored, or a tool is imported, as demonstrated by a project.prp file.
POC
Reference
- https://github.com/NationalSecurityAgency/ghidra/issues/71
- https://xlab.tencent.com/en/2019/03/18/ghidra-from-xxe-to-rce/
Github
No PoCs found on GitHub currently.