An XML external entity (XXE) injection vulnerability in Kwoksys Kwok Information Server before v2.9.5.SP31 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
kwoksys information server 2.9.5 |
||
kwoksys information server |