Posted on

FreePlane up to 1.5.9 XML Parser XXE information disclosure

A vulnerability was found in FreePlane up to 1.5.9. It has been declared as problematic. This vulnerability affects some unknown functionality of the component XML Parser. Upgrading to version 1.6 eliminates this vulnerability. A possible mitigation has been published 2 weeks after the disclosure of the vulnerability.