CVE-2025-65482
EUVD-2026-337020.01.2026, 16:16
An XML External Entity (XXE) vulnerability in opensagres XDocReport v0.9.2 to v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .docx file.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| opensagres | xdocreport | 0.9.2 ≤ 𝑥 ≤ 2.0.3 |
𝑥
= Vulnerable software versions