Vulnerabilities

CVE-2018-1000069

by Fred · 13/03/2018

FreePlane version 1.5.9 and earlier contains a XML External Entity (XXE) vulnerability in XML Parser in mindmap loader that can result in stealing data from victim’s machine. This attack appears to require the victim to open a specially crafted mind map file. This vulnerability appears to have been fixed in 1.6+.

Date published : 2018-03-13

https://www.debian.org/security/2018/dsa-4175

https://www.freeplane.org/wiki/index.php/XML_External_Entity_vulnerability_in_map_parser

Similar

Tags: Cybersecurity Alert