CVE-2022-47514
CVE-2022-47514 affects XML-RPC.NET prior to 2.5.0. The issue is an XML External Entity (XXE) injection leading to server-side request forgery (SSRF) by an authenticated user, demonstrated via a pingback.aspx POST. A PoC exists per references. Impact: remote SSRF with high severity per CVSS. Remed...