Vigil@nce - Vigil@nce - python-docx: external XML entity injection, analyzed on 19/08/2021
October 2021 by Vigil@nce
Vigil@nce - An attacker can transmit malicious XML data to python-docx, in order to read a file, scan sites, or trigger a denial of service.
Plus d'information sur : https://vigilance.fr/vulnerability/python-docx-external-XML-entity-injection-36156