Microsoft Event Viewer 1.0 XXE Injection
Posted by deepcore on December 6, 2016 – 6:45 am
Microsoft Event Viewer version 1.0 suffers from an XML external entity (XXE) injection vulnerability that allows for file exfiltration.
Post a reply
You must be logged in to post a comment.