CVE-2020-24379

Published
View on NVD ↗
CVSS v3
9.8
CRITICAL
CVSS v2
6.8
MEDIUM
Affected
2
PROJECTS

Description

WebDAV implementation in Yaws web server versions 1.81 to 2.0.7 is vulnerable to XXE injection.

erlyaws/yaws
erlyaws/yaws
Yaws webserver
GitHubGitHub
1.31K
vulnbe/poc-yaws-dav-xxe
vulnbe/poc-yaws-dav-xxe
Yaws web server XML external entity injection POC
GitHubGitHub