CVE-2024-31573

4.0MEDIUM

XMLUnit for Java before 2.10.0, in the default configuration, might allow code execution via an untrusted stylesheet (used for an XSLT transformation), because XSLT extension functions are enabled.

게시됨: 10/17/2025업데이트됨: 10/21/2025
NVD에서 보기MITRE에서 보기

설명

XMLUnit for Java before 2.10.0, in the default configuration, might allow code execution via an untrusted stylesheet (used for an XSLT transformation), because XSLT extension functions are enabled.

AI 분석AI 기반

참조