If using internal XML library, be aware of the warning:
with that said, also be aware of:
As to your question, do you have a URL we can visit to look at the file structure? You don't show enough of it to answer properly.
Quote:Warning
The XML modules are not secure against erroneous or maliciously constructed data. If you need to parse untrusted or unauthenticated data see XML vulnerabilities.
with that said, also be aware of:
Quote:These external packages are recommended for any code that parses untrusted XML data.
defusedxml is a pure Python package with modified subclasses of all stdlib XML parsers that prevent any potentially malicious operation. The package also ships with example exploits and extended documentation on more XML exploits like xpath injection
As to your question, do you have a URL we can visit to look at the file structure? You don't show enough of it to answer properly.