CVE-2024-36827 | ebookmeta up to 1.2.7 XML ebookmeta.get_metadata xml external entity reference (Issue 16)

CVE-2024-36827 | ebookmeta up to 1.2.7 XML ebookmeta.get_metadata xml external entity reference (Issue 16)

A vulnerability, which was classified as problematic, has been found in ebookmeta up to 1.2.7. This issue affects the function ebookmeta.get_metadata of the component XML Handler. The manipulation leads to xml external entity reference. The identification of this vulnerability is CVE-2024-36827. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.