CVE-2020-25614 – xmlquery before 1.3.1 lacks a check for whether a LoadURL response is in the XML format, w …

Vuln ID: CVE-2020-25614

Published:  2020-09-16  15:15:12Z

Description: xmlquery before 1.3.1 lacks a check for whether a LoadURL response is in the XML format, which allows attackers to cause a denial of service (SIGSEGV) at xmlquery.(*Node).InnerText or possibly have unspecified other impact.

Source: NVD.NIST.GOV