CVE-2025-52162 Information
Jul 19, 2025
cve
Description
agorum Software GmbH Agorum core open v11.9.2 & v11.10.1 was discovered to contain an XML External Entity (XXE) via the RSSReader endpoint. This vulnerability allows attackers to access sensitive data via providing a crafted XML input.
Reference
http://agorum.com https://herolab.usd.de/security-advisories/usd-2025-0024/
Related CNNVD
CNNVD-202507-2389 (Published: 2025-07-18)
Share on: