CVE-2025-68280 | Apache SIS up to 1.5 XML File xml external entity reference

Inserito da Angelo Barbosa | Gen 5, 2026 | CVE

A vulnerability classified as problematic was found in Apache SIS up to 1.5. Impacted is an unknown function of the component XML File Handler. Such manipulation leads to xml external entity reference.

This vulnerability is uniquely identified as CVE-2025-68280. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2025-68280 | Apache SIS up to 1.5 XML File xml external entity reference

Post correlati

CVE-2024-12615 | Passwords Manager Plugin up to 1.4.8 on WordPress sql injection

CVE-2024-35138 | IBM Security Verify Access Appliance up to 10.0.8 cross-site request forgery

CVE-2024-37517 | Brainstorm Force Spectra Plugin up to 2.13.7 on WordPress authorization

CVE-2024-5587 | Casdoor up to 1.335.0 Configuration File /conf/app.conf file access (cve-casdoor)