Lucene search
MitreCVELIST:CVE-2018-10832HistoryMay 11, 2018 - 9:00 p.m.
CVE-2018-10832
2018-05-1121:00:00
mitre
www.cve.org
ModbusPal 1.6b is vulnerable to an XML External Entity (XXE) attack. Projects are saved as .xmpp files and automations can be exported as .xmpa files, both XML-based, which are vulnerable to XXE injection. Sending a crafted .xmpp or .xmpa file to a user, when opened/imported in ModbusPal, will return the contents of any local files to a remote attacker.
Related
nvd
nvd
CVE-2018-10832
2018-05-11 21:29:00
prion
prion
Xxe
2018-05-11 21:29:00
packetstorm
packetstorm
ModbusPal 1.6b XML External Entity Injection
2018-05-10 00:00:00
cve
cve
CVE-2018-10832
2018-05-11 21:29:00
zdt
zdt
ModbusPal 1.6b - XML External Entity Injection Vulnerability
2018-05-10 00:00:00
exploitpack
exploitpack
ModbusPal 1.6b - XML External Entity Injection
2018-05-10 00:00:00
exploitdb
exploitdb
ModbusPal 1.6b - XML External Entity Injection
2018-05-10 00:00:00