CRMEB_Java E-commerce System 1.3.4 XML External Entity Injection정보

제목	https://www.crmeb.com/ CRMEB_Java E-commerce System 1.3.4 XML External Entity Injection
설명	There is a xxe external entity injection vulnerability in ZhongBangKeJi CRMEB-Java E-commerce System, which occurs in the webHook function of WeChatMessageController.java files, which can cause security risks such as arbitrary local file reading and detection of intranet information
원천	⚠️ https://github.com/jmx0hxq/Vulnerability-learning/blob/main/crmeb-java-xxe1.md
사용자	jmx0hxq (UID 63891)
제출	2025. 03. 03. PM 04:25 (1 년도 ago)
모더레이션	2025. 03. 16. PM 01:14 (13 days later)
상태	수락
VulDB 항목	299864 [crmeb_java 까지 1.3.4 WeChatMessageController.java webHook XML External Entity]
포인트들	17

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!