cve/CVE-2018-20687.md at c42a8175e7a919537d1a63deb490ade8c3ea0285

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-31 18:50:38 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

An XML external entity (XXE) vulnerability in CommandCenterWebServices/.*?wsdl in Raritan CommandCenter Secure Gateway before 8.0.0 allows remote unauthenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request.

POC

Reference

http://packetstormsecurity.com/files/155359/Raritan-CommandCenter-Secure-Gateway-XML-Injection.html

Github

No PoCs found on GitHub currently.

804 B Raw Blame History

CVE-2018-20687

Description

POC

Reference

Github

804 B

Raw Blame History