0.001 Low
EPSS
Percentile
45.3%
XXE vulnerability in ‘XML2Dict’ version 0.2.2 allows an attacker to cause a denial of service. The parse function does not properly restrict recursive entity references.
github.com/mcspring/XML2Dict/tree/master
nvd.nist.gov/vuln/detail/CVE-2021-25951
pypi.org/project/XML2Dict
www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25951