2 matches found
CVE-2023-2806
A vulnerability classified as problematic was found in Weaver e-cology up to 9.0. Affected by this vulnerability is the function RequestInfoByXml of the component API. The manipulation leads to xml external entity reference. The associated identifier of this vulnerability is VDB-229411. NOTE: The...
CVE-2023-2806
CVE-2023-2806 affects Weaver e-cology up to v9.0, specifically the API component’s function RequestInfoByXml . The issue is an XML External Entity (XXE) reference caused by improper restrictions on XML links to external objects, enabling a malicious XML request to read, modify, or delete data. Mu...