NuytsTech Security

CVE-2016-5002

by ·

XML external entity (XXE) vulnerability in the Apache XML-RPC (aka ws-xmlrpc) library 3.1.3, as used in Apache Archiva, allows remote attackers to conduct server-side request forgery (SSRF) attacks via a crafted DTD.

Date published : 2017-10-27

http://www.securityfocus.com/bid/91736

https://0ang3el.blogspot.in/2016/07/beware-of-ws-xmlrpc-library-in-your.html

Tags: