| Summary | Unauthenticated attackers can exploit a weakness in the XML parser functionality of Lobster_pro prior to version 4.12.6-GA. This allows them to obtain read access to files on the application server and adjacent network shares, and perform HTTP GET requests to arbitrary services. |
|---|---|
| Publication Date | April 30, 2026, 10:16 p.m. |
| Registration Date | May 1, 2026, 4:07 a.m. |
| Last Update | May 1, 2026, 12:48 a.m. |