Vulnerability — CVE-2022-45326

CVE-2022-45326

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2022-45326
Description:: An XML external entity (XXE) injection vulnerability in Kwoksys Kwok Information Server before v2.9.5.SP31 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks.
Last updated date:: 12/08/2022

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/08/2022
Reference url to background: https://www.navsec.net/2022/11/12/kwoksys-xxe.html