:: Deepquest :: This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Windows System Information 6.1.7601 XXE Injection

deepcoreDec 6, 2016

Windows System Information MSINFO32.exe version 6.1.7601 suffers from an XML external entity (XXE) injection vulnerability that allows for file exfiltration.

You must be logged in to post a comment.

Related Posts

Chitor CMS 1.1.2 SQL Injection

Multi-Vendor Online Groceries Management System 1.0 Remote Code Execution

Telit Cinterion IoT Traversal / Escalation / Bypass / Heap Overflow

Leave a Reply