ventrian News-Articles version NewsArticles.00.09.11 contains a XML External Entity (XXE) vulnerability in News-Articles/API/MetaWebLog/Handler.ashx.vb that can result in Attacker can read any file in the server or use smbrelay attack to access to server..
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
news-articles project news-articles 00.09.11 |