VYPR

tika-core

by Apache

Source repositories

CVEs (1)

  • CVE-2025-66516Dec 4, 2025
    risk 0.00cvss epss 0.80

    Critical XXE in Apache Tika tika-core (1.13-3.2.1), tika-pdf-module (2.0.0-3.2.1) and tika-parsers (1.13-1.28.5) modules on all platforms allows an attacker to carry out XML External Entity injection via a crafted XFA file inside of a PDF. This CVE covers the same…