Advisory - BlogEngine - XXE (XML External Entity)

Question

Advisory - BlogEngine - XXE (XML External Entity)

DanielBishtawi opened this issue 7 years ago · 1 comments

Hello,

While testing the Netsparker web application security scanner we identified a XXE (XML External Entity) vulnerability in BlogEngine. Can you please advise whom shall we contact to disclose the vulnerability details so it can be fixed?

Please email me at daniel@netsparker.com for the technical details.

Looking forward to hearing from you.

Regards,

Daniel Bishtawi
Marketing Administrator | Netsparker Web Application Security Scanner

Answer 1 · 2019-04-21T03:27:20.000Z

This may be fixed with #206