3 matches found
Exploit for Improper Restriction of XML External Entity Reference in Jetbrains Ktor
Ktor XML XXE Vulnerability Reproduction CVE-2023-45612 Re...
Exploit for Improper Restriction of XML External Entity Reference in Jetbrains Ktor
PoC exploit for CVE-2023-45612, a XXE vulnerability. The target...
CVE-2023-45612
CVE-2023-45612 affects JetBrains Ktor with the ContentNegotiation XML format enabled in versions before 2.3.5. The root cause is an insecure default XML configuration that allows external entity processing, enabling XXE. Exploitation can lead to file disclosure (e.g., reading server files) and SS...