CVE-2025-52162

agorum Software GmbH Agorum core open v11.9.2 & v11.10.1 was discovered to contain an XML External Entity (XXE) via the RSSReader endpoint. This vulnerability allows attackers to access sensitive data via providing a crafted XML input.

CVSS

No CVSS.

References

Link	Resource
http://agorum.com
https://herolab.usd.de/security-advisories/usd-2025-0024/

Configurations

No configuration.

History

18 Jul 2025, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-18 17:15

Updated : 2025-07-18 19:15

NVD link : CVE-2025-52162

Mitre link : CVE-2025-52162

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2025-52162

Attach tags to `CVE-2025-52162`