4 matches found
CVE-2023-28152
An issue was discovered in Independentsoft JWord before 1.1.110. The API is prone to XML external entity XXE injection via a remote DTD in a DOCX file...
CVE-2023-28152
Independentsoft JWord before 1.1.110 is affected by an XML External Entity (XXE) injection via a remote DTD in a DOCX file. The.Root cause is an XXE vulnerability in the API that parses DOCX content, enabling unauthorized data access or manipulation. Impact in the NVD listing shows high severity ...
CVE-2023-28152
An issue was discovered in Independentsoft JWord before 1.1.110. The API is prone to XML external entity XXE injection via a remote DTD in a DOCX file...
CVE-2023-28152
An issue was discovered in Independentsoft JWord before 1.1.110. The API is prone to XML external entity XXE injection via a remote DTD in a DOCX file...