2 matches found
CVE-2019-9757
creationtimestamp| type| source ---|---|--- 2024-01-29 19:21:47+00:00| seen| https://t.me/ctinow/175485 2025-06-12 21:02:22+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lrgszi34ky2k...
CVE-2019-9757
LabKey Server 19.1.0 is affected by CVE-2019-9757: sending an SVG containing an XML External Entity (XXE) payload to visualization-exportImage.view or visualization-exportPDF.view can read arbitrary local files on the server. Root cause is an XXE flaw in XML parsing exposed by those endpoints. Im...