3 matches found
CVE-2017-10889
TablePress prior to version 1.8.1 allows an attacker to conduct XML External Entity XXE attacks via unspecified vectors...
CVE-2017-10889
CVE-2017-10889 concerns the WordPress TablePress plugin. Multiple connected sources confirm that TablePress versions prior to 1.8.1 are vulnerable to an XML External Entity (XXE) attack due to XML entities not being properly restricted (CWE-611). The vulnerability can allow an attacker to access ...
CVE-2017-10889
TablePress prior to version 1.8.1 allows an attacker to conduct XML External Entity XXE attacks via unspecified vectors...