CVE-2021-44147
N/A
N/A
Summary
An XML External Entity issue in Claris FileMaker Pro and Server (including WebDirect) before 19.4.1 allows a remote attacker to disclose local files via a crafted XML/Excel document and perform server-side request forgery attacks.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://davidhamann.de/2021/11/18/filemaker-xxe-vulnerability/
- https://support.claris.com/s/answerview?anum=000035751
References
- https://davidhamann.de/2021/11/18/filemaker-xxe-vulnerability/
- https://support.claris.com/s/answerview?anum=000035751
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.