EN, securityweek

Critical Apache Tika Vulnerability Leads to XXE Injection

2025-12-08 13:12

The bug allows attackers to carry out XML External Entity (XXE) injection attacks via crafted XFA files inside PDF files.

The post Critical Apache Tika Vulnerability Leads to XXE Injection appeared first on SecurityWeek.

This article has been indexed from SecurityWeek

Read the original article:

Critical Apache Tika Vulnerability Leads to XXE Injection

Related

← Cloudflare Forces Widespread Outage to Mitigate Exploitation of Maximum Severity Vulnerability in React2Shell

Apple and Google Alert Users Worldwide After New Spyware Activity Surfaces →