CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Kwoksys: >> Information Server >> 2.9.5 Security Vulnerabilities

CVE-2022-45326

An XML external entity (XXE) injection vulnerability in Kwoksys Kwok Information Server before v2.9.5.SP31 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks.

CVSS Score

4.9

EPSS Score

0.001

Published

2022-12-06

Page 1

Vulnerabilities

Vulnerable Software

Kwoksys: >> Information Server >> 2.9.5 Security Vulnerabilities

Products

Pricing

Contact Us