XXE in Apache Camel
Multiple XML external entity (XXE) vulnerabilities in `builder/xml/XPathBuilder.java` in this package allow remote attackers to read arbitrary files via an external entity in an invalid XML String or GenericFile object in an XPath query.
XXE in Apache Camel
XML external entity (XXE) vulnerability in the XML converter setup in `converter/jaxp/XmlConverter.java` in this package allows remote attackers to read arbitrary files via an external entity in an SAXSource.