CVE-2023-28152

Publication date

2023-03-24 00:00:00

Family

mitre

State

PUBLISHED

Description

An issue was discovered in Independentsoft JWord before 1.1.110. The API is prone to XML external entity (XXE) injection via a remote DTD in a DOCX file.