3 matches found
CVE-2013-4295
The gadget renderer in Apache Shindig 2.5.0 for PHP allows remote attackers to obtain sensitive information via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue...
CVE-2013-4295
CVE-2013-4295 concerns the gadget renderer in Apache Shindig 2.5.0 for PHP, which is vulnerable to an XML External Entity (XXE) injection via an XML document containing an external entity declaration. This leads to information disclosure from the gadget rendering server. Affected: Apache Shindig ...
Apache Shindig 2.5.0 XXE Injection
CVE-2013-4295: XXE vulnerability In Apache Shindig 2.5.0 PHP Severity: Important Vendor: The Apache Software Foundation Versions Affected: Apache Shindig PHP 2.5.0 Description: The gadget renderer in the PHP version of Apache Shindig is subject to an XML External Entity XXE Injection attack. The...