CVE-2018-1000542

by Fred · 26/06/2018

netbeans-mmd-plugin version <= 1.4.3 contains a XML External Entity (XXE) vulnerability in MMD file import that can result in Possible information disclosure, server-side request forgery, or remote code execution. This attack appear to be exploitable via Specially crafted MMD file. Date published : 2018-06-26 https://0dd.zone/2018/06/02/Netbeans-MMD-Plugin-XXE/

https://github.com/raydac/netbeans-mmd-plugin/issues/45

CVE-2018-1000542

Similar

Recent Posts

Categories

CVE-2018-1000542

Share this:

Similar

Recent Posts

Categories

Tags