diff --git a/2022/25xxx/CVE-2022-25312.json b/2022/25xxx/CVE-2022-25312.json
index cfe52015d4b..372cdb72428 100644
--- a/2022/25xxx/CVE-2022-25312.json
+++ b/2022/25xxx/CVE-2022-25312.json
@@ -71,6 +71,11 @@
                 "refsource": "MISC",
                 "url": "https://lists.apache.org/thread/y6cm5n3ksohsrhzqknqhzy7p3mtkyk23",
                 "name": "https://lists.apache.org/thread/y6cm5n3ksohsrhzqknqhzy7p3mtkyk23"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[oss-security] 20220304 CVE-2022-25312: An XML external entity (XXE) injection vulnerability exists in the Apache Any23 RDFa XSLTStylesheet extractor",
+                "url": "http://www.openwall.com/lists/oss-security/2022/03/04/2"
             }
         ]
     },