EPSS
Percentile
73.7%
An attacker can create an XML file which completely bypasses signature validation, passing off an altered file as a signed one.
github.com/advisories/GHSA-rrfw-hg9m-j47h
github.com/russellhaering/goxmldsig/commit/f6188febf0c29d7ffe26a0436212b19cb9615e64