CVE-2020-37192 — MSN Password Recovery 1.30 contains an XML external entity injection vulnerability that allows attackers to read local system files through crafted XML input. Attackers can exploit the 'Favorites& — CVE Database · The Intelligence Room