Lucene search

Exploit for Improper Restriction of XML External Entity Reference in Wordpress

🗓️ 24 Jan 2023 16:13:43Type

Wordpress XML parsing issue in Media Library leading to XXE attacks. Exploitable by a user with file upload abilities using PHP 8. Automated script available

Reporter	Title	Published	Views	Family All 46
GithubExploit	Exploit for Improper Restriction of XML External Entity Reference in Wordpress	11 Nov 202222:41	–	githubexploit
GithubExploit	Exploit for Improper Restriction of XML External Entity Reference in Wordpress	14 Nov 202217:05	–	githubexploit
GithubExploit	Exploit for Improper Restriction of XML External Entity Reference in Wordpress	3 Dec 202413:56	–	githubexploit
GithubExploit	Exploit for Improper Restriction of XML External Entity Reference in Wordpress	6 Nov 202212:13	–	githubexploit
GithubExploit	Exploit for Improper Restriction of XML External Entity Reference in Wordpress	16 Apr 202120:41	–	githubexploit
GithubExploit	Exploit for Improper Restriction of XML External Entity Reference in Wordpress	27 Aug 202119:20	–	githubexploit
GithubExploit	Exploit for Improper Restriction of XML External Entity Reference in Wordpress	1 Jun 202110:10	–	githubexploit
GithubExploit	Exploit for Improper Restriction of XML External Entity Reference in Wordpress	23 May 202114:08	–	githubexploit
GithubExploit	Exploit for Improper Restriction of XML External Entity Reference in Wordpress	6 Nov 202204:26	–	githubexploit
GithubExploit	Exploit for Improper Restriction of XML External Entity Reference in Wordpress	5 Nov 202221:00	–	githubexploit

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Jan 2023 16:43Current

6.5Medium risk

Vulners AI Score6.5

CVSS24

CVSS36.5 - 7.1

EPSS0.33246