mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
691 B
691 B
CVE-2019-13625
Description
NSA Ghidra before 9.0.1 allows XXE when a project is opened or restored, or a tool is imported, as demonstrated by a project.prp file.
POC
Reference
- https://github.com/NationalSecurityAgency/ghidra/issues/71
- https://xlab.tencent.com/en/2019/03/18/ghidra-from-xxe-to-rce/
Github
No PoCs found on GitHub currently.