MidnightBSD

Advisories for py-xml_project

CVE-2020-26709

py-xml v1.0 was discovered to contain an XML External Entity Injection (XXE) vulnerability which allows attackers to execute arbitrary code via a crafted XML file.

Products Affected

Vendor Product Version
py-xml_project py-xml 1.0