๐ Medium CVE-2020-9352: Smartclient Smartclient
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: cxsecurity.com
An issue was discovered in SmartClient 12.0. Unauthenticated exploitation of blind XXE can occur in the downloadWSDL feature by sending a POST request to /tools/developerConsoleOperations.jsp with a valid payload in the _transaction parameter. ...