Lucene search
PRIOn knowledge basePRION:CVE-2018-10832HistoryMay 11, 2018 - 9:29 p.m.
Xxe
2018-05-1121:29:00
PRIOn knowledge base
www.prio-n.com
3
ModbusPal 1.6b is vulnerable to an XML External Entity (XXE) attack. Projects are saved as .xmpp files and automations can be exported as .xmpa files, both XML-based, which are vulnerable to XXE injection. Sending a crafted .xmpp or .xmpa file to a user, when opened/imported in ModbusPal, will return the contents of any local files to a remote attacker.
Related
packetstorm
packetstorm
ModbusPal 1.6b XML External Entity Injection
2018-05-10 00:00:00
cve
cve
CVE-2018-10832
2018-05-11 21:29:00
cvelist
cvelist
CVE-2018-10832
2018-05-11 21:00:00
nvd
nvd
CVE-2018-10832
2018-05-11 21:29:00
zdt
zdt
ModbusPal 1.6b - XML External Entity Injection Vulnerability
2018-05-10 00:00:00
exploitpack
exploitpack
ModbusPal 1.6b - XML External Entity Injection
2018-05-10 00:00:00
exploitdb
exploitdb
ModbusPal 1.6b - XML External Entity Injection
2018-05-10 00:00:00