CVE-2018-1000090
CVE-2018-1000090 affects Textpattern 4.6.2, where the Import XML feature is vulnerable to an XML Injection that can cause a Denial of Service by exhausting server memory. The exploit is described as uploading a specially crafted XML file; exploitation status is noted in sources, but there are no ...