CVE-2019-19032

XMLBlueprint through 16.191112 is affected by XML External Entity Injection. The impact is: Arbitrary File Read when an XML File is validated. The component is: XML Validate function. The attack vector is: Specially crafted XML payload.
Configurations

Configuration 1 (hide)

cpe:2.3:a:xmlblueprint:xmlblueprint:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:34

Type Values Removed Values Added
References () http://packetstormsecurity.com/files/156139/XMLBlueprint-16.191112-XML-Injection.html - Exploit, Third Party Advisory, VDB Entry () http://packetstormsecurity.com/files/156139/XMLBlueprint-16.191112-XML-Injection.html - Exploit, Third Party Advisory, VDB Entry
References () https://hackpuntes.com/cve-2019-19032-xmlblueprint-16-191112-inyeccion-xml/ - Exploit, Third Party Advisory () https://hackpuntes.com/cve-2019-19032-xmlblueprint-16-191112-inyeccion-xml/ - Exploit, Third Party Advisory

01 Jan 2022, 20:09

Type Values Removed Values Added
References (MISC) http://packetstormsecurity.com/files/156139/XMLBlueprint-16.191112-XML-Injection.html - (MISC) http://packetstormsecurity.com/files/156139/XMLBlueprint-16.191112-XML-Injection.html - Exploit, Third Party Advisory, VDB Entry
CWE CWE-91 CWE-611

Information

Published : 2019-12-30 20:15

Updated : 2024-11-21 04:34


NVD link : CVE-2019-19032

Mitre link : CVE-2019-19032

CVE.ORG link : CVE-2019-19032


JSON object : View

Products Affected

xmlblueprint

  • xmlblueprint
CWE
CWE-611

Improper Restriction of XML External Entity Reference