Description
In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Redirect Manager Cross-Site Scripting (2.18.18)
WordPress 5.0.x Multiple Vulnerabilities (5.0 - 5.0.10)
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.136.3)
SharePoint Improper Authorization Vulnerability (CVE-2025-49701)
WordPress Use of Insufficiently Random Values Vulnerability (CVE-2017-17091)