CRITICAL 9.8 NuGet
AutoUpdater.NET allows XXE
GHSA-75p2-hgw4-g7f7 · CVE-2019-20627
Published · Modified
Description
AutoUpdater.cs in AutoUpdater.NET before 1.5.8 allows XXE.
References
- ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2019-20627
- WEB https://github.com/ravibpatel/AutoUpdater.NET/commit/1dc25f2bea6ea522dbac1512b5563c4746d539c3
- PACKAGE https://github.com/ravibpatel/AutoUpdater.NET
- WEB https://github.com/ravibpatel/AutoUpdater.NET/releases/tag/v1.5.8
- WEB https://www.doyler.net/security-not-included/autoupdater-net-vulnerability
Ready to move
Start Securing
Free, no credit card | First findings in minutes