CVE-2018-20157
The data import functionality in OpenRefine through 3.1 allows an XML External Entity (XXE) attack through a crafted (zip) file, allowing attackers to read arbitrary files.
Don't forget to share
- Next story Extortion emails carrying bomb threats cause panic across the US
- Previous story Arctic Wolf Acquires Risk Assessment Firm RootSecure
Tags
Android
app
Apple
apps
attack
Attacks
breach
Bug
Chinese
Chrome
Code
Critical
Cyber
Cybersecurity
Data
Devices
Facebook
Firm
flaw
Flaws
Google
government
Group
hack
Hacked
Hacker
hackers
hacking
hit
Malware
Microsoft
Million
News
Online
Patches
Phishing
Privacy
Ransomware
Russian
Security
Software
Users
Vulnerabilities
vulnerability
Windows