Openxrechnungtoolbox

Source repositories

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2024-58335	Med	0.26	5.0	0.00		Dec 24, 2025	OpenXRechnungToolbox through 2024-10-05-3.0.0 before 6c50e89 allows XXE because the disallow-doctype-decl feature is not enabled in visualization/VisualizerImpl.java.