2 matches found
CVE-2025-31497
TEIGarage is a webservice and RESTful service to transform, convert and validate various formats, focussing on the TEI format. The Document Conversion Service contains a critical XML External Entity XXE Injection vulnerability in its document conversion functionality. The service processes XML...
CVE-2025-31497
TEIGarage’s Document Conversion Service is affected by a critical XML External Entity (XXE) injection in versions prior to 1.2.4. The vulnerability arises because external entity processing is not disabled during XML processing, allowing an attacker to read arbitrary files from the server filesys...