CVE-2021-3312
CVE-2021-3312
An XML external entity (XXE) vulnerability in Alkacon OpenCms 11.0, 11.0.1 and 11.0.2 allows remote authenticated users with edit privileges to exfiltrate files from the server's file system by uploading a crafted SVG document.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →