EPSS
Percentile
60.9%
easy-xml is vulnerable to XML external entity injection. When processing XML data, the parseXML function in __init __.py allows an attacker to access sensitive data or crash the application.
parseXML
__init __.py
github.com/darkfoxprime/python-easy_xml/blob/e7359344f6a88c721f563bc8a81bf9a71d4ee0ce/easy_xml/__init__.py#L374
github.com/darkfoxprime/python-easy_xml/issues/1