{"vulnerability": "cve-2017-12439", "sightings": [{"uuid": "c5e9c5f8-6deb-4105-979f-62460f7debf5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2017-12439", "type": "seen", "source": "https://t.me/arpsyndicate/1905", "content": "#ExploitObserverAlert\n\nCVE-2017-12439\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2017-12439. SocuSoft Flash Slideshow Maker Professional through v5.20, when the advanced configuration is used, has an xml_path HTTP parameter that trusts user-supplied input, in conjunction with an unsafe XML configuration file. This has resultant content forgery, cross site scripting, and unvalidated redirection issues.\n\nFIRST-EPSS: 0.001180000\nNVD-IS: 5.9\nNVD-ES: 1.6", "creation_timestamp": "2023-12-18T03:50:40.000000Z"}]}