← back
CVE-2019-19031

CVE-2019-19031

EPSS 5.2%
Easy XML Editor through v1.7.8 is affected by: XML External Entity Injection. The impact is: Arbitrary File Read and DoS by consuming resources. The component is: XML Parsing. The attack vector is: Specially crafted XML payload.
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/155996/Easy-XML-Editor-1.7.8-XML-Injection.htmlunverifiedexploitdbwww.exploit-db.com/exploits/47945unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/155996/Easy-XML-Editor-1.7.8-XML-Injection.htmlhttps://hackpuntes.com/cve-2019-19031-easy-xml-editor-1-7-8-inyeccion-xml/