zendframework/zend-json Security Advisories for 2.2.5 (1)
-
[CRITICAL] Potential XXE/XEE attacks using PHP functions: simplexml_load_*, DOMDocument::loadXML, and xml_parse
PKSA-z96z-pgwj-vpjy GHSA-8x2v-pcg7-94f4
Affected version: >=2.1.0,<2.1.6|>=2.2.0,<2.2.6
Reported by:
GitHub, FriendsOfPHP/security-advisories