4 matches found
CVE-2018-10832
ModbusPal 1.6b is vulnerable to an XML External Entity (XXE) injection in XML-based project/automation files (.xmpp, .xmpa). The root cause is XXE processing allowing a remote attacker to exfiltrate local file contents when a crafted file is opened/imported. This is documented across multiple sou...
ModbusPal 1.6b XML External Entity Injection
Exploit Title: ModbusPal XXE Injection + Date: 05-08-2018 + Exploit Author: Trent Gordon + Vendor Homepage: http://modbuspal.sourceforge.net/ + Software Link: https://sourceforge.net/projects/modbuspal/files/latest/download?source=files + Version: 1.6b + Tested on: Ubuntu 16.04 with Java 1.8.0151...
ModbusPal 1.6b - XML External Entity Injection Vulnerability
Exploit for java platform in category web applications + Exploit Title: ModbusPal XXE Injection + Exploit Author: Trent Gordon + Vendor Homepage: http://modbuspal.sourceforge.net/ + Software Link: https://sourceforge.net/projects/modbuspal/files/latest/download?source=files + Version: 1.6b + Test...
ModbusPal 1.6b - XML External Entity Injection
ModbusPal 1.6b - XML External Entity Injection + Exploit Title: ModbusPal XXE Injection + Date: 05-08-2018 + Exploit Author: Trent Gordon + Vendor Homepage: http://modbuspal.sourceforge.net/ + Software Link: https://sourceforge.net/projects/modbuspal/files/latest/download?source=files + Version:...