CVE-2017-15683
CVE-2017-15683 affects Crafter CMS Crafter Studio 3.0.1, where an unauthenticated attacker can craft XML to cause the system to retrieve OS files out-of-band. The vulnerability is triggered via specially crafted XML used to create a site, enabling access to local files. The issue is described acr...