6 matches found
EUVD-2015-3665
Malware in sbrugna...
CVE-2015-3623
XML external entity XXE vulnerability in QlikTech Qlikview before 11.20 SR12 allows remote attackers to conduct server-side request forgery SSRF attacks and read arbitrary files via crafted XML data in a request to AccessPoint.aspx...
Server side request forgery (ssrf)
XML external entity XXE vulnerability in QlikTech Qlikview before 11.20 SR12 allows remote attackers to conduct server-side request forgery SSRF attacks and read arbitrary files via crafted XML data in a request to AccessPoint.aspx...
CVE-2015-3623
XML external entity XXE vulnerability in QlikTech Qlikview before 11.20 SR12 allows remote attackers to conduct server-side request forgery SSRF attacks and read arbitrary files via crafted XML data in a request to AccessPoint.aspx...
CVE-2015-3623
The CVE-2015-3623 entry documents an XXE vulnerability in QlikTech QlikView prior to version 11.20 SR12. The flaw occurs in the AccessPoint.aspx XML parser, allowing an unauthenticated remote attacker to perform server-side request forgery (SSRF) and read arbitrary files via specially crafted XML...
KLA10668 File access vulnerability in QlikTech QlikView
XML external entity vulnerability was found in QlikView at AccessPoint.aspx. By exploiting this vulnerability malicious users can read arbitrary files. This vulnerability can be exploited remotely via a specially designed xml data. Original advisories - Exploitation Public exploits exist for this...