Headline
GHSA-ccrc-9x59-3vc4: requests-xml XML External Entity Injection vulnerability
requests-xml v0.2.3 was discovered to contain an XML External Entity Injection (XXE) vulnerability which allows attackers to execute arbitrary code via a crafted XML file.
requests-xml XML External Entity Injection vulnerability
Moderate severity GitHub Reviewed Published Jun 29, 2023 to the GitHub Advisory Database • Updated Jun 30, 2023
Related news
CVE-2020-26708: XML External Entity (XXE) · Issue #7 · erinxocon/requests-xml
requests-xml v0.2.3 was discovered to contain an XML External Entity Injection (XXE) vulnerability which allows attackers to execute arbitrary code via a crafted XML file.