ssrf

Exploiting CVE-2016-4264 With OXML_XXE

Recently ColdFusion was shown vulnerable [http://legalhackers.com/advisories/Adobe-ColdFusion-11-XXE-Exploit-CVE-2016-4264.txt] to XXE based attacks in OXML documents; CVE-2016-4264 [https://cve.mitre.org/cgi-bin/cvename.