mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-30 18:56:19 +00:00
721 B
721 B
CVE-2012-5656
Description
The rasterization process in Inkscape before 0.48.4 allows local users to read arbitrary files via an external entity in a SVG file, aka an XML external entity (XXE) injection attack.
POC
Reference
- http://www.openwall.com/lists/oss-security/2012/12/20/3
- https://bugs.launchpad.net/inkscape/+bug/1025185
Github
No PoCs found on GitHub currently.