XXE Vulnerability in Depart.asmx, a Universal Online Learning Platform for MicroXia

Micro Xia Online Learning Platform is an online education system based on B/S architecture. The product/SOPA/Depart.asmx suffers from XXE injection vulnerability, which can be exploited by an attacker to remotely read arbitrary files from the server...