Feverwizard

**Name of the Vulnerable Software and Affected Versions** zhangyanbo2007 youkefu versions up to 4.2.0 **Description** A problematic issue was found in the XML Document Handler component, specifically affecting the CallCenterRouterController.java file. The manipulation of the `routercontent` argument leads to an XML external entity reference. This issue can be exploited remotely. **Recommendations** For versions up to 4.2.0, as a temporary workaround, consider restricting access to the XML Document Handler component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.