3 matches found
CVE-2022-22835
An issue was discovered in OverIT Geocall before version 8.0. An authenticated user who has the Test Trasformazione XSL functionality enabled can exploit a XXE vulnerability to read arbitrary files from the filesystem...
CVE-2022-22835
An issue was discovered in OverIT Geocall before version 8.0. An authenticated user who has the Test Trasformazione XSL functionality enabled can exploit a XXE vulnerability to read arbitrary files from the filesystem...
CVE-2022-22834
CVE-2022-22834 (OverIT Geocall) : The vulnerability exists in OverIT Geocall before version 8.0. An authenticated user who has the Test Trasformazione XSL functionality enabled can trigger an XSLT Injection, which could lead to remote code execution. Multiple connected sources (including NVD and ...