Identifier

CVE-2020-25020

Package Slug

maven/net.sf.mpxj/mpxj

Vulnerability

Improper Restriction of XML External Entity Reference

Description

MPXJ suffers from XXE vulnerabilities. This affects the GanttProjectReader and PhoenixReader components.

Affected Versions

All versions up to 8.1.3

Solution

Upgrade to version 8.1.4 or above.

Last Modified

2020-09-04

source