Pepperminty-Wiki version 0.15 is vulnerable to XXE attacks in the getsvgsize function resulting in denial of service and possibly remote code execution
CVE-2017-1000497 (pepperminty-wiki)
Leave a reply
Leave a Reply
You must be logged in to post a comment.
