Anyplace version before commit 80359b4 contains a XML External Entity (XXE) vulnerability in Man in the middle on map API call that can result in Disclosure of confidential data, denial of service, SSRF, port scanning. This vulnerability appears to have been fixed in after commit 80359b4.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-12-20T15:00:00Z
Updated: 2024-09-16T18:17:52.754Z
Reserved: 2018-12-20T00:00:00Z
Link: CVE-2018-1000829
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-12-20T15:29:01.250
Modified: 2019-02-07T17:06:08.737
Link: CVE-2018-1000829
Redhat
No data.