5 matches found
CVE-2018-14485
BlogEngine.NET 3.3 allows XXE attacks via the POST body to metaweblog.axd...
CVE-2018-14485
CVE-2018-14485 affects BlogEngine.NET 3.3. It is a XML External Entity (XXE) Injection vulnerability triggered by a POST to /metaweblog.axd, due to insufficient XXE handling. Public advisories (e.g., Netsparker) document the issue and note the status as Not Fixed. Impact is high; CVSS data indica...
BlogEngine 3.3 XML External Entity Injection
XML External Entity Injection Vulnerability in BlogEngine 3.3 Information -------------------- Advisory by Netsparker Name: XML External Entity Injection Vulnerability in BlogEngine 3.3 Affected Software: BlogEngine Affected Versions: 3.3 Homepage: https://blogengine.io/ Vulnerability: XML Extern...
BlogEngine 3.3 - XML External Entity Injection Vulnerability
Exploit for windows platform in category web applications XML External Entity Injection Vulnerability in BlogEngine 3.3 Information -------------------- Advisory by Netsparker Name: XML External Entity Injection Vulnerability in BlogEngine 3.3 Affected Software: BlogEngine Affected Versions: 3.3...
BlogEngine 3.3 - XML External Entity Injection
BlogEngine 3.3 - XML External Entity Injection XML External Entity Injection Vulnerability in BlogEngine 3.3 Information -------------------- Advisory by Netsparker Name: XML External Entity Injection Vulnerability in BlogEngine 3.3 Affected Software: BlogEngine Affected Versions: 3.3 Homepage:...