yworks yEd Graph Editor – XSLT Remote Code Execution in XML
Update to yworks yEd Graph Editor version 3.20.1
It is possible to execute code on the operating system when opening malicious XSL Transformation files in conjunction with a custom stylesheet.
Do you think the security of your data might be lacking? Let's find the best approach together.
Once you contact us, we will ask you about the project you want to secure.