Description
An XML External Entity (XXE) vulnerability exists in wuta jox 1.16 in the readObject method in JOXSAXBeanInput.
Remediation
References
https://novysodope.github.io/2021/10/29/64/
Related Vulnerabilities
CVE-2023-24188 Vulnerability in maven package com.bstek.ureport:ureport2-core
CVE-2023-26472 Vulnerability in maven package org.xwiki.platform:xwiki-platform-icon-ui
CVE-2020-24616 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind