VYPR

Maven package

org.apache.shindig/shindig-php

pkg:maven/org.apache.shindig/shindig-php

Vulnerabilities (1)

  • CVE-2013-4295Oct 24, 2013
    affected >= 2.5.0-beta1, < 2.5.0-update1fixed 2.5.0-update1

    The gadget renderer in Apache Shindig 2.5.0 for PHP allows remote attackers to obtain sensitive information via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.