Uncovering XXE Vulnerabilities in FileMaker’s XML Parsing Source: https://davidhamann.de/2021/11/18/filemaker-xxe-vulnerability/ CVE FileMaker Pro CVE-2021-44147 A couple of months ago I looked more deeply into the “Import Records” functionality in FileMaker, especially the XML parsing, and was wondering if any XXE vulnerability may exist and how one could exploit this in technically interesting ways. The vulnerability is/was indeed there