CVE-2018-1000090

Posted on 2018년 3월 14일2018년 3월 14일 by admin

CVE-2018-1000090

textpattern version version 4.6.2 contains a XML Injection vulnerability in Import XML feature that can result in Denial of service in context to the web server by exhausting server memory resources. This attack appear to be exploitable via Uploading a specially crafted XML file.

Source: CVE-2018-1000090

답글 남기기 응답 취소