| |
Vulnerability CVE-2023-6280
Published: 2023-12-19
| Description: |
An XXE (XML External Entity) vulnerability has been detected in 52North WPS affecting versions prior to 4.0.0-beta.11. This vulnerability allows the use of external entities in its WebProcessingService servlet for an attacker to retrieve files by making HTTP requests to the internal network. |
Type:
CWE-611 (Information Exposure Through XML External Entity Reference)
References: |
https://www.incibe.es/en/incibe-cert/notices/aviso/xml-external-entity-reference-52north-wps
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
