CVE-2015-2125
HP WebInspect 7.x–10.4 (before 10.4 update 1) is affected by CVE-2015-2125 via an XML External Entity (XXE) injection in its XML parsing, enabling a remote attacker to cause unauthorized information disclosure (read arbitrary files) when scanning or processing crafted XML. The vulnerability is de...