Vulnerabilities (CVE)

Filtered by vendor Bstek Subscribe
Filtered by product Urule
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-24189 1 Bstek 1 Urule 2023-12-10 N/A 9.8 CRITICAL
An XML External Entity (XXE) vulnerability in urule v2.1.7 allows attackers to execute arbitrary code via uploading a crafted XML file to /urule/common/saveFile.