dom4j allows External Entities by default which might enable XXE attacks
Critical severity
GitHub Reviewed
Published
Jun 5, 2020
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Give feedback on Dependabot alerts