XML External Entity (XXE) Vulnerability in Accusoft PrizmDoc HTML5 Document Viewer before 13.5

XML External Entity (XXE) Vulnerability in Accusoft PrizmDoc HTML5 Document Viewer before 13.5

CVE-2018-15805 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:P

Accusoft PrizmDoc HTML5 Document Viewer before 13.5 contains an XML external entity (XXE) vulnerability, allowing an attacker to read arbitrary files or cause a denial of service (resource consumption).

Learn more about our External Network Penetration Testing.