CVE-2019-19998
HIGH WAF: High
CVSS 7.5
Published: 2019-12-26
CWE-611
Xiuno BBS 4.0 allows XXE via plugin/xn_wechat_public/route/token.php.
WAF Coverage Analysis
XML External Entity (XXE)
High WAF Coverage
OWASP: A05:2021 Security Misconfiguration
941xxx - XSS / XXE
Affected Software
| Vendor | Product | Version |
|---|---|---|
| xiuno | xiunobbs | 4.0 |
References
- gitee.com (Exploit, Third Party Advisory)