You are here:
Security analyst Stephan Sekula discovered an XML External Entity (XXE) vulnerability in ACTICO Workplace, which allows an attacker to read arbitrary files on the system.
Details to this advisory:
CSNC-2022-017 / XML External Entity Attack