XML External Entity (XXE) Vulnerability in Emerson Liebert SiteScan Web Version 6.5 and Prior

XML External Entity (XXE) Vulnerability in Emerson Liebert SiteScan Web Version 6.5 and Prior

CVE-2016-8348 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

An XML External Entity (XXE) issue was discovered in Emerson Liebert SiteScan Web Version 6.5, and prior. An attacker may enter malicious input to Liebert SiteScan through a weakly configured XML parser causing the application to execute arbitrary code or disclose file contents from a server or connected network.

Learn more about our Web App Pen Testing.