Lucene search
K

5 matches found

NVD
NVD
added 2023/02/24 10:15 p.m.33 views

CVE-2023-24189

An XML External Entity XXE vulnerability in urule v2.1.7 allows attackers to execute arbitrary code via uploading a crafted XML file to /urule/common/saveFile...

9.8CVSS9.6AI score0.01192EPSS
Exploits1References2
OSV
OSV
added 2023/02/24 10:15 p.m.25 views

CVE-2023-24189

An XML External Entity XXE vulnerability in urule v2.1.7 allows attackers to execute arbitrary code via uploading a crafted XML file to /urule/common/saveFile...

9.8CVSS9.6AI score0.01192EPSS
Exploits1References2
Prion
Prion
added 2023/02/24 10:15 p.m.20 views

Xxe

An XML External Entity XXE vulnerability in urule v2.1.7 allows attackers to execute arbitrary code via uploading a crafted XML file to /urule/common/saveFile...

7.5CVSS9.6AI score0.01192EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/02/24 12:0 a.m.53 views

CVE-2023-24189

Summary (CVE-2023-24189) : An XML External Entity (XXE) vulnerability in urule v2.1.7 allows remote code execution by uploading a crafted XML file to the API endpoint /urule/common/saveFile. This affects urule’s XML handling and is deemed CRITICAL (CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H; b...

9.8CVSS9.6AI score0.01192EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/02/24 12:0 a.m.35 views

CVE-2023-24189

An XML External Entity XXE vulnerability in urule v2.1.7 allows attackers to execute arbitrary code via uploading a crafted XML file to /urule/common/saveFile...

9.8AI score0.01192EPSS
Exploits1References2
Rows per page
Query Builder