Medium severity6.3NVD Advisory· Published Mar 29, 2024· Updated Apr 15, 2026

CVE-2023-49234

Description

An XML external entity (XXE) vulnerability was found in Stilog Visual Planning 8. It allows an authenticated attacker to access local server files and exfiltrate data to an external server.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/fulldisclosure/2024/Apr/3nvd
www.schutzwerk.com/advisories/SCHUTZWERK-SA-2023-006.txtnvd
www.schutzwerk.com/blog/schutzwerk-sa-2023-006/nvd
www.visual-planning.com/en/support-portal/updatesnvd

News mentions

No linked articles in our index yet.

cvss	0.410
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000