Description
Mulesoft APIkit through 1.3.0 allows XXE because of validation/RestXmlSchemaValidator.java
Remediation
References
https://github.com/mulesoft/apikit/issues/547
Related Vulnerabilities
CVE-2021-37694 Vulnerability in npm package @asyncapi/java-spring-cloud-stream-template
CVE-2020-7630 Vulnerability in npm package git-add-remote
CVE-2021-43138 Vulnerability in maven package org.webjars.npm:async
CVE-2023-26113 Vulnerability in npm package collection.js
CVE-2020-7656 Vulnerability in maven package org.webjars.bowergithub.jquery:jquery