Vulnerabilities > Twelvemonkeys Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-06 | CVE-2021-23792 | XXE vulnerability in Twelvemonkeys Project Twelvemonkeys The package com.twelvemonkeys.imageio:imageio-metadata before 3.7.1 are vulnerable to XML External Entity (XXE) Injection due to an insecurely initialized XML parser for reading XMP Metadata. | 7.5 |