CVE-2020-26708

Published June 29th, 2023

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

requests-xml v0.2.3 was discovered to contain an XML External Entity Injection (XXE) vulnerability which allows attackers to execute arbitrary code via a crafted XML file.

erinxocon/requests-xml

Requests-XML: XML Parsing for Humans

GitHub

186