← back
CVE-2019-19032

CVE-2019-19032

EPSS 4.5%
XMLBlueprint through 16.191112 is affected by XML External Entity Injection. The impact is: Arbitrary File Read when an XML File is validated. The component is: XML Validate function. The attack vector is: Specially crafted XML payload.
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/156139/XMLBlueprint-16.191112-XML-Injection.htmlunverifiedexploitdbwww.exploit-db.com/exploits/47974unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/156139/XMLBlueprint-16.191112-XML-Injection.htmlhttps://hackpuntes.com/cve-2019-19032-xmlblueprint-16-191112-inyeccion-xml/