VYPR

Episerver.cms

by Nuget

CVEs (1)

  • CVE-2017-17762HigAug 29, 2018
    risk 0.49cvss 7.5epss 0.05

    XML external entity (XXE) vulnerability in Episerver 7 patch 4 and earlier allows remote attackers to read arbitrary files via a crafted DTD in an XML request involving util/xmlrpc/Handler.ashx.