2 matches found
CVE-2017-14759
OpenText Document Sciences xPression (formerly EMC Document Sciences xPression) v4.5SP1 Patch 13 is affected by an XML External Entity (XXE) vulnerability in the QuickDocHttpSoap11Endpoint SOAP service. An unauthenticated attacker can read directory listings or system files, or cause SSRF/Denial ...
OpenText Document Sciences xPression 4.5SP1 Patch 13 XML Injection
Title: OpenText Document Sciences xPression formerly EMC Document Sciences xPression - XML External Entity Author: Marcin Woloszyn Date: 27. September 2017 CVE: CVE-2017-14759 Affected Software: ================== OpenText Document Sciences xPression formerly EMC Document Sciences xPression Explo...