Xml-rpc.net Project - Xml-rpc.net CVE - CVE Search - CVE Details

Filtered by vendor Xml-rpc.net Project Subscribe

Filtered by product Xml-rpc.net

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-47514	1 Xml-rpc.net Project	1 Xml-rpc.net	2022-12-22	N/A	8.8 HIGH
An XML external entity (XXE) injection vulnerability in XML-RPC.NET before 2.5.0 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, as demonstrated by a pingback.aspx POST request.

Vulnerabilities (CVE)