2 matches found
CVE-2022-24449
Solar appScreener through 3.10.4, when a valid license is not present, allows XXE and SSRF attacks via a crafted XML document...
CVE-2022-24449
The CVE-2022-24449 entry affects Solar appScreener up to version 3.10.4, where a crafted XML document can trigger XXE and SSRF when no valid license is present. This is supported by PT-2022-16705 details naming affected versions and the license requirement as a condition for exploitation. Practic...