LangChain Text Splitters is vulnerable to XML External Entity (XXE) attacks due to unsafe XSLT parsing
High severity
GitHub Reviewed
Published
Oct 6, 2025
to the GitHub Advisory Database
•
Updated Oct 8, 2025
Give feedback on Dependabot alerts