penetration-testing
xxe
xml
java
XXE Vulnerability in Excel Streaming Reader Java Library
12 November 2018
The Java library Excel Streaming Reader was found to be vulnerable to XML External Entity attacks during a recent penetration test we performed for a client who was using it.
Excel Streaming Reader provides a memory efficient way to consume large Excel files for processing by your application and …