Security Advisory
CVE-2019-10718
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
BlogEngine.NET 3.3.7.0 and earlier allows XML External Entity Blind Injection, related to pingback.axd and BlogEngine.Core/Web/HttpHandlers/PingbackHandler.cs.