Wecon PI Studio HMI and PI Studio XML External Entity Injection Vulnerability
Wecon PI Studio HMI and PI Studio are both HMI programming software from Wecon Technologies China. An XML external entity injection vulnerability exists in XMLParser in Wecon PI Studio HMI 4.1.9 and earlier and PI Studio 4.2.34 and earlier. An attacker can exploit this vulnerability to obtain...