CVE-2014-0030

Name of the Vulnerable Software and Affected Versions: Apache Roller versions prior to 5.0.3

Description: The issue allows attackers to conduct XML External Entity (XXE) attacks. XXE attacks occur when an application parses XML input that contains malicious external entities, which can lead to the disclosure of sensitive data or other security issues.

Recommendations: For versions prior to 5.0.3, update to version 5.0.3 or later to resolve the issue.