CVE-2022-38840 Information

Apr 17, 2023 cve

Description

cgi-bin/xmlstatus.cgi in Güralp MAN-EAM-0003 3.2.4 is vulnerable to an XML External Entity (XXE) issue via XML file upload which leads to local file disclosure.

Reference

https://drive.google.com/drive/folders/1UG5IcL8fFp9MV0vjd78_cx6iXKda5bpM?usp=sharing http://packetstormsecurity.com/files/171439/MAN-EAM-0003-3.2.4-XML-Injection.html

Share on: