| |
Vulnerability CVE-2024-6893
Published: 2024-08-08
| Description: |
The "soap_cgi.pyc" API handler allows the XML body of SOAP requests to contain references to external entities. This allows an unauthenticated attacker to read local files, perform server-side request forgery, and overwhelm the web server resources. |
See advisories in our WLB2 database: | Topic | Author | Date |
Med. |
| Jaggar Henry | 18.08.2024 |
Type:
CWE-611 (Information Exposure Through XML External Entity Reference)
References: |
https://korelogic.com/Resources/Advisories/KL-001-2024-010.txt
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
