5 matches found
CVE-2018-19371
CVE-2018-19371 concerns the SDL Web Content Manager (Build 8.5.0) where the SaveUserSettings web service is vulnerable to an XML External Entity (XXE) injection. The underlying issue allows an attacker to read sensitive files from the server, leveraging XML values passed to the SaveUserSettings e...
SDL Web Content Manager 8.5.0 - XML External Entity Injection
SDL Web Content Manager 8.5.0 - XML External Entity Injection Author Information Author : Ahmed Elhady Mohamed twitter : @AhmedELhady Company : Canon Security Date : 25/11/2018 Software Information Affected Software : SDL Web Content Manager Version: Build 8.5.0 Vendor: SDL Tridion Software websi...
SDL Web Content Manager 8.5.0 XML Injection
Author Information Author : Ahmed Elhady Mohamed twitter : @AhmedELhady Company : Canon Security Date : 25/11/2018 Software Information Affected Software : SDL Web Content Manager Version: Build 8.5.0 Vendor: SDL Tridion Software website : https://www.sdl.com CVE Number: CVE-2018-19371 Descriptio...
SDL Web Content Manager 8.5.0 - XML External Entity Injection Vulnerability
Exploit for php platform in category web applications Author Information Author : Ahmed Elhady Mohamed twitter : @AhmedELhady Company : Canon Security Date : 25/11/2018 Software Information Affected Software : SDL Web Content Manager Version: Build 8.5.0 Vendor: SDL Tridion Software website :...
SDL Web Content Manager 8.5.0 - XML External Entity Injection
Author Information Author : Ahmed Elhady Mohamed twitter : @AhmedELhady Company : Canon Security Date : 25/11/2018 Software Information Affected Software : SDL Web Content Manager Version: Build 8.5.0 Vendor: SDL Tridion Software website : https://www.sdl.com CVE Number: CVE-2018-19371 Descriptio...