CVE-2020-25020: Improper Restriction of XML External Entity Reference in MPXJ

Severity: Critical

CVSS Score: 9.8

MPXJ through 8.1.3 allows XXE attacks. This affects the GanttProjectReader and PhoenixReader components.