CWE-611 Improper Restriction of XML External Entity...
High severity
Unreviewed
Published
Jun 9, 2026
to the GitHub Advisory Database
•
Updated Jun 23, 2026
Description
Published by the National Vulnerability Database
Jun 9, 2026
Published to the GitHub Advisory Database
Jun 9, 2026
Last updated
Jun 23, 2026
CWE-611 Improper Restriction of XML External Entity Reference vulnerability exists that could cause information disclosure of server-side file contents when an attacker with a Data Center Expert user account submits crafted XML payloads to SOAP service endpoints.
References