CVE-2025-65482 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An XML External Entity (XXE) vulnerability in opensagres XDocReport v0.9.2 to v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .docx fi…
Critical CVSS: 9.8

CVE-2025-65482

An XML External Entity (XXE) vulnerability in opensagres XDocReport v0.9.2 to v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .docx file.
Vendor
Opensagres
Product
Xdocreport
CWE
CWE-611
Yayın Tarihi
2026-01-20 16:16:06
Güncelleme
2026-02-03 21:43:11
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-611 Xdocreport CRITICAL Opensagres 2026

Referanslar

https://drive.google.com/drive/folders/1hUyCznpBN7ivo5krmyJ4OQc_q626Hy5q?usp=sharing https://github.com/AT190510-Cuong/CVE-2025-65482-XXE- https://github.com/opensagres/xdocreport https://hackmd.io/@cuongnh/r1B7B8fJ-g https://hackmd.io/@cuongnh/rkJPCgSy-l