EUVD-2018-20428

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

XXE vulnerability in Automated Logic Corporation WebCTRL versions allows unauthorized file disclosure

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2018-8819	14 Jun 201820:29	–	attackerkb
Circl	CVE-2018-8819	13 Jun 201818:52	–	circl
CNVD	ALC WebCTRL XML External Entity Injection Vulnerability	15 Jun 201800:00	–	cnvd
The Coalfire Blog	How I Found CVE-2018-8819: Out-of-Band (OOB) XXE in WebCTRL	11 Jun 201821:32	–	coalfire
CVE	CVE-2018-8819	14 Jun 201820:00	–	cve
Cvelist	CVE-2018-8819	14 Jun 201820:00	–	cvelist
NVD	CVE-2018-8819	14 Jun 201820:29	–	nvd
OSV	CVE-2018-8819	14 Jun 201820:29	–	osv
Packet Storm	WebCTRL Out-Of-Band XML Injection	9 Jun 201800:00	–	packetstorm
Prion	Design/Logic Flaw	14 Jun 201820:29	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "7e424920-6b67-32cc-a862-1d7c4008eb42",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "6962cf4e-e356-38e5-acc1-03bcc8998c35",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/cve/CVE-2018-8819
seclists	www.seclists.org/fulldisclosure/2018/Jun/21
packetstormsecurity	www.packetstormsecurity.com/files/148126/WebCTRL-Out-Of-Band-XML-Injection.html
hateshape	www.hateshape.github.io/general/2018/06/07/CVE-2018-8819.html
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

7.6High risk

Vulners AI Score7.6

CVSS 37.5

CVSS 25

EPSS0.01463