XXE Vulnerability in TRS Portal Personalization Portal
TRS Portal for TORS company developed a set of completely based on J2EE and browser technology, personalized portal general-purpose software. TRS Portal personalized portal ServiceControler Servlet can be accessed without logging in, and there is a XXE entity injection vulnerability. This...