Vulnerabilities > CVE-2017-8110 - XXE vulnerability in Modified-Shop Modified Ecommerce Shopsoftware 2.0.2.2

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
modified-shop
CWE-611
NVD
Published: 2017-04-25
Updated: 2017-05-05

Summary

www.modified-shop.org modified eCommerce Shopsoftware 2.0.2.2 rev 10690 has XXE in api/it-recht-kanzlei/api-it-recht-kanzlei.php.

Vulnerable Configurations

Part Description Count
Application
Modified-Shop
1

Common Weakness Enumeration (CWE)

References