The Upload File functionality in Aurea Jive Jive-n 9.0.2.1 On-Premises allows for an XML External Entity attack through a crafted file, allowing attackers to read arbitrary files
Reporter | Title | Published | Views | Family All 4 |
---|---|---|---|---|
CVE | CVE-2018-5758 | 12 Mar 201821:29 | – | cve |
Prion | Xxe | 12 Mar 201821:29 | – | prion |
NVD | CVE-2018-5758 | 12 Mar 201821:29 | – | nvd |
Rhino Security Labs | XML External Entity Injection in Jive-n (CVE-2018-5758) | 6 Mar 201821:04 | – | rhino |
Source | Link |
---|---|
rhinosecuritylabs | www.rhinosecuritylabs.com/research/xml-external-entity-injection-xxe-cve-2018-5758/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo