Lucene search
PRIOn knowledge basePRION:CVE-2018-12463HistoryJul 12, 2018 - 4:29 p.m.
Server side request forgery (ssrf)
2018-07-1216:29:00
PRIOn knowledge base
www.prio-n.com
4
An XML external entity (XXE) vulnerability in Fortify Software Security Center (SSC), version 17.1, 17.2, 18.1 allows remote unauthenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fortify_software_security_center | eq | 18.1 | |
| fortify_software_security_center | eq | 17.2 | |
| fortify_software_security_center | eq | 17.1 |
Related
packetstorm
packetstorm
Fortify SSC 17.10 / 17.20 / 18.10 XXE Injection
2018-07-13 00:00:00
cve
cve
CVE-2018-12463
2018-07-12 16:29:05
exploitpack
exploitpack
checkpoint_advisories
checkpoint_advisories
Fortify Software Security Center Command Injection (CVE-2018-12463)
2020-10-07 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2018-12463
2018-07-12 16:29:05
zdt
zdt
exploitdb
exploitdb
d0znpp
d0znpp
A4: XML External Entities (XXE) ❗️ — Top 10 OWASP 2017
2021-09-14 13:09:18