GHSA-3446-6MGW-F79P Grav is Vulnerable to XXE via SVG Upload

Dear Grav Security Team, A security vulnerability was discovered in Grav CMS that allows authenticated attackers to read arbitrary files from the server through XML External Entity XXE injection. Vulnerability Summary | Field | Details | |-------|---------| | Vulnerability Type | XML External...

Digital Guardian Management Console 7.1.2.0015 Arbitrary File Read

Title: Digital Guardian Managment Console - Arbitrary File Read Vulnerability Author: Pawel Gocyla Date: 18 April 2018 CVE: CVE-2018-10176 Affected software: ================== Digital Guardian Managment Console Version 7.1.2.0015 Description : ============= Digital Guardian is an American data...