N/A

National Library of the Netherlands multiNER <= c0440948057afc6e3d6b4903a7c05e666b94a3bc is affected by an XML External Entity (XXE) vulnerability in multiNER/ner.py. Since XML parsing resolves external entities, a malicious XML stream could leak internal files and/or cause a DoS.

N/A

N/A

MultiNer代码问题漏洞

National Library Of The Netherlands / Research MultiNer是荷兰National Library Of The Netherlands / Research公司的用于将五种不同（荷兰语）命名实体识别包的输出合并为一个答案。 MultiNer存在安全漏洞，该漏洞源于digger在解析XML外部实体时安全考虑不足，攻击者可以通过构建恶意XML流泄漏内部文件并导致拒绝服务。

N/A

N/A