Vulnerabilities (CVE)

Filtered by vendor Apache Subscribe
Filtered by product Shindig
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-4295 1 Apache 1 Shindig 2024-11-21 5.0 MEDIUM N/A
The gadget renderer in Apache Shindig 2.5.0 for PHP allows remote attackers to obtain sensitive information via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.