An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Apache
XXE
Nutch
Snap Creator Framework
NVD
CVSS 3.1
9.1
EPSS
4.4%