Improper Restriction of XML External Entity Reference
An XML external entity (XXE) injection in PyWPS allows an attacker to view files on the application server filesystem by assigning a path to the entity.
An XML external entity (XXE) injection in PyWPS allows an attacker to view files on the application server filesystem by assigning a path to the entity.