Zendframework Local file disclosure via XXE injection in Zend_XmlRpc

Zend_XmlRpc is vulnerable to XML eXternal Entity (XXE) Injection attacks. The SimpleXMLElement class (SimpleXML PHP extension) is used in an insecure way to parse XML data. External entities can be specified by adding a specific DOCTYPE element to XML-RPC requests. By exploiting this vulnerability an application may be coerced to open arbitrary files and/or TCP connections.

Published: Jun 7, 2024
Updated: Jun 27, 2024
GHSA: GHSA-229x-22xc-2f2w
Severity: High
Exploit:

CVSS v3:

Severity: Unknown
Score:
AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

CWEs:

CWE-611

OWASP TOP 10:

A4 - XML External Entities (XXE)

Affected Software
References

Software	From	Fixed in
zendframework / zendframework1	1.0.0	1.11.13

https://github.com/FriendsOfPHP/security-advisories/blob/master/zendframework/zendframework1/ZF2012-01.yaml
https://web.archive.org/web/20210620092354/https://framework.zend.com/security/advisory/ZF2012-01

Vulnerability Database

290,206

Zendframework Local file disclosure via XXE injection in Zend_XmlRpc