PT-2019-5542 · Org.Dom4J +2 · Dom4J +2

Name of the Vulnerable Software and Affected Versions: dom4j versions 1.x and 2.0.x through 2.1.2 dom4j version 2.1.x before 2.1.3 Description: The issue is related to the incorrect restriction of XML links to external objects in the dom4j library, which might enable XXE attacks. This could allow...