SimpleXML (latest version 2.7.1) is vulnerable to an XXE vulnerability resulting SSRF, information disclosure, DoS and so on.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-611,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| apache | solr | 8.4.1 |
| simplexml_project | simplexml | 2.7.1 |
| simplexml_project | simplexml | * |