Bstek - Urule CVE - CVE Search - CVE Details

Filtered by vendor Bstek Subscribe

Filtered by product Urule

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-24189	1 Bstek	1 Urule	2023-03-06	N/A	9.8 CRITICAL
An XML External Entity (XXE) vulnerability in urule v2.1.7 allows attackers to execute arbitrary code via uploading a crafted XML file to /urule/common/saveFile.

Vulnerabilities (CVE)