EPSS
Percentile
70.4%
urule is vulnerable to XML External Entities (XXE). A remote attacker is able to execute arbitrary code by uploading a crafted XML file to /urule/common/saveFile.
/urule/common/saveFile
github.com/advisories/GHSA-6jx7-223w-6cf7
github.com/Venus-WQLab/bug_report/blob/main/ureport/ureport-cve-2023-24189.md
github.com/youseries/urule