RSS   Vulnerabilities for 'Episerver'   RSS

2018-08-29
 
CVE-2017-17762

CWE-611
 

 
XML external entity (XXE) vulnerability in Episerver 7 patch 4 and earlier allows remote attackers to read arbitrary files via a crafted DTD in an XML request involving util/xmlrpc/Handler.ashx.

 
2014-09-17
 
CVE-2012-1032

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in the Euroling SiteSeeker module 3.x before 3.4.5 for EPiServer allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

 

 >>> Vendor: Episerver 4 Products
Episerver cms
Episerver
Ektron cms
FIND


Copyright 2024, cxsecurity.com

 

Back to Top