VYPR

soap_cgi.pyc

by KoreLogic

CVEs (1)

  • CVE-2024-6893HigAug 8, 2024
    risk 0.51cvss 7.5epss 0.33

    The "soap_cgi.pyc" API handler allows the XML body of SOAP requests to contain references to external entities. This allows an unauthenticated attacker to read local files, perform server-side request forgery, and overwhelm the web server resources.