Inkscape · Inkscape · CVE-2012-5656
**Name of the Vulnerable Software and Affected Versions**
Inkscape versions prior to 0.48.4
**Description**
The issue concerns an XML external entity (XXE) injection attack in the rasterization process. This allows local users to read arbitrary files via an external entity in a SVG file.
**Recommendations**
For versions prior to 0.48.4, update to version 0.48.4 or later to resolve the issue.