The vulnerability in the implementation of the extractor.rdfa.XSLTStylesheet object of the XSLTStylesheet class in the Apache Any23 library allows attackers to perform XXE attacks.

The vulnerability of the extractor.rdfa.XSLTStylesheet object class in the XSLTStylesheet class of the Apache Any23 library is related to an incorrect restriction on XML references to external objects. Exploiting this vulnerability could allow a remote attacker to perform XXE attacks...