CVE-2024-28168

Improper Restriction of XML External Entity Reference (‘XXE’) vulnerability in Apache XML Graphics FOP.

This issue affects Apache XML Graphics FOP: 2.9.

Users are recommended to upgrade to version 2.10, which fixes the issue.

More information : http://www.openwall.com/lists/oss-security/2024/10/09/1