2024-03-10 00:00:00
mitre
PUBLISHED
libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate).