CVE-2019-19998

Xiuno BBS 4.0 allows XXE via plugin/xn_wechat_public/route/token.php.
References
Link Resource
https://gitee.com/xiuno/xiunobbs/issues/I177MY Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:xiuno:xiunobbs:4.0:*:*:*:*:*:*:*

Information

Published : 2019-12-26 04:15

Updated : 2020-01-07 03:20


NVD link : CVE-2019-19998

Mitre link : CVE-2019-19998

Products Affected
No products.
CWE
CWE-611

Improper Restriction of XML External Entity Reference