Maven/Org.codehaus.castor/Castor-Xml | GitLab Advisory Database

XML External Entity (XXE) attacks via a crafted XML document

The default configuration for the Xerces SAX Parser in this package allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.

Advisories for Maven/Org.codehaus.castor/Castor-Xml package