cb
cvebase
.
~
/
products
/
apache
/
shindig
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
apache
/
Apache Shindig
Apache Shindig vulnerabilities
1 known vulnerability affecting
apache/shindig
.
Track
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2013-4295
P3
MEDIUM
CVSS 5.0
PoC
v2.5.0
2013-10-24
CVE-2013-4295 [MEDIUM] CWE-200 CVE-2013-4295: The gadget renderer in Apache Shindig 2.5.0 for PHP allows remote attackers to obtain sensitive info The gadget renderer in Apache Shindig 2.5.0 for PHP allows remote attackers to obtain sensitive information via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
nvd
Apache Shindig vulnerabilities | cvebase