Vulnerabilities > CVE-2020-26708 - XXE vulnerability in Requests-Xml Project Requests-Xml 0.2.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
requests-xml v0.2.3 was discovered to contain an XML External Entity Injection (XXE) vulnerability which allows attackers to execute arbitrary code via a crafted XML file.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |