CVE-2018-14485

Published May 7th, 2019

View on NVD ↗

CVSS v3

N/A

CVSS v2

7.5

HIGH

Affected

1

PROJECT

Description

BlogEngine.NET 3.3 allows XXE attacks via the POST body to metaweblog.axd.

BlogEngine/BlogEngine.NET

Multi-User ASP.NET Blogging Application

GitHub

990