beefproject/beef

Add IE11 XXE to read local files

Open

#1.715 geöffnet am 12. Apr. 2019

Auf GitHub ansehen
 (1 Kommentar) (2 Reaktionen) (0 zugewiesene Personen)JavaScript (1.992 Forks)batch import
Good First IssueLowModuleSuggestion

Repository-Metriken

Stars
 (8.637 Stars)
PR-Merge-Metriken
 (Durchschn. Merge 11h 55m) (19 gemergte PRs in 30 T)

Beschreibung

There seem to be a XXE vulnerability in IE 11 which allows to read every local file: https://packetstormsecurity.com/files/152484/MICROSOFT-INTERNET-EXPLORER-v11-XML-EXTERNAL-ENTITY-INJECTION-0DAY.txt

would be nice to include this ;-)

Contributor Guide