BlogEngine.NET 3.3.7.0 and earlier allows XML External Entity Blind Injection, related to pingback.axd and BlogEngine.Core/Web/HttpHandlers/PingbackHandler.cs.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-06-21T18:23:15
Updated: 2024-08-04T22:32:01.263Z
Reserved: 2019-04-02T00:00:00
Link: CVE-2019-10718
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-06-21T19:15:09.817
Modified: 2019-06-23T19:27:52.003
Link: CVE-2019-10718
Redhat
No data.