Xmlquery Project: Security Vulnerabilities
xmlquery before 1.3.1 lacks a check for whether a LoadURL response is in the XML format, which allows attackers to cause a denial of service (SIGSEGV) at xmlquery.(*Node).InnerText or possibly have unspecified other impact.
CVSS Score
9.8
EPSS Score
0.004
Published
2020-09-16