Michael Dohmen

1 exploit Active since Dec 2025
CVE-2024-58335 WRITEUP MEDIUM WRITEUP
OpenXRechnungToolbox <6c50e89 - XML External Entity
OpenXRechnungToolbox through 2024-10-05-3.0.0 before 6c50e89 allows XXE because the disallow-doctype-decl feature is not enabled in visualization/VisualizerImpl.java.
CVSS 5.0