CVE-2023-24187 Information

Feb 15, 2023 cve

Description

An XML External Entity (XXE) vulnerability in ureport v2.2.9 allows attackers to execute arbitrary code via uploading a crafted XML file to /ureport/designer/saveReportFile.

Reference

http://ureport.com https://github.com/youseries/ureport https://github.com/cgddgc/vulns/blob/main/ureport2-vuln-des.md

Share on: