An XML External Entity issue in Claris FileMaker Pro and Server (including WebDirect) before 19.4.1 allows a remote attacker to disclose local files via a crafted XML/Excel document and perform server-side request forgery attacks.
CPE | Name | Operator | Version |
---|---|---|---|
filemaker_pro | lt | 19.4.1 | |
filemaker_server | lt | 19.4.1 |