CVE-2017-17762

2018-08-29T19:29:00
ID CVE-2017-17762
Type cve
Reporter cve@mitre.org
Modified 2018-11-08T18:51:00

Description

XML external entity (XXE) vulnerability in Episerver 7 patch 4 and earlier allows remote attackers to read arbitrary files via a crafted DTD in an XML request involving util/xmlrpc/Handler.ashx.