CVE-2026-32251: CWE-611: Improper Restriction of XML External Entity Reference i CVE-2026-32251 is an XML External Entity (XXE) vulnerability classified under CWE-611 affecting tolgee-platform, an open-source localization platform. The vulnerability exists because the XML parsers used to import Android XML resource file

CRITICAL: tolgee-platform <3.166.3 has an XXE vuln (CVE-2026-32251)! Auth users can access server files & SSRF internal services. Upgrade to 3.166.3+ now. radar.offseq.com/threat/cve-2026-32251-cw... #OffSeq #XXE #CVE202632251