Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
XML External Entity (XXE) vulnerability in Terminalfour 8.0.0001 through 8.3.18 and XML JDBC versions up to 1.0.4 allows authenticated users to submit malicious XML via unspecified features which could lead to various actions such as accessing the underlying server, remote code execution (RCE), or performing Server-Side Request Forgery (SSRF) attacks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Terminalfour 安全漏洞
Vulnerability Description
Terminalfour是美国Terminalfour公司的一个面向高等教育的数字营销和网络内容管理平台。 Terminalfour 8.0.0001至8.3.18版本和XML JDBC 1.0.4及之前版本存在安全漏洞,该漏洞源于存在XML外部实体注入漏洞,从而导致访问底层服务器、远程代码执行或执行服务器端请求伪造攻击等。
CVSS Information
N/A
Vulnerability Type
N/A