Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-42745

Disclosure Date: November 03, 2022 (last updated February 24, 2025)
CandidATS version 3.0.0 allows an external attacker to read arbitrary files from the server. This is possible because the application is vulnerable to XXE.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0