High severity7.5NVD Advisory· Published May 8, 2026· Updated May 11, 2026
CVE-2023-42346
CVE-2023-42346
Description
Alkacon OpenCms before 16 allows XXE when the <!DOCTYPE> refers to an external host.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4News mentions
0No linked articles in our index yet.