CVE-2025-9375 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1.
Medium CVSS: 6.9

CVE-2025-9375

XML Injection vulnerability in xmltodict allows Input Data Manipulation.
This issue affects xmltodict: from 0.14.2 before 0.15.1.
Vendor
-
Product
-
CWE
CWE-91
Yayın Tarihi
2025-09-01 17:15:33
Güncelleme
2025-09-08 21:15:34
Source Identifier
help@fluidattacks.com
KEV Date Added
-

Kategoriler

CWE-91 MEDIUM 2025

Referanslar

https://fluidattacks.com/advisories/mono https://github.com/martinblech/xmltodict https://github.com/martinblech/xmltodict/blob/v0.15.1/CHANGELOG.md https://github.com/martinblech/xmltodict/commit/f98c90f071228ed73df997807298e1df4f790c33 https://docs.python.org/3/library/xml.sax.utils.html#xml.sax.saxutils.XMLGenerator https://docs.python.org/3/library/xml.sax.utils.html#xml.sax.saxutils.escape https://github.com/martinblech/xmltodict/issues/377#issuecomment-3255691923