Because user input is not sufficiently sanitized, attackers could exploit the flaw to define external entities within an XML request.

The post Recent GeoServer Vulnerability Exploited in Attacks appeared first on SecurityWeek.