SugarCRM versions 6.5.16 and below suffer from an XML external entity attack vulnerability.
75ac9dbf751b5a7e72f7c1007cb231586a2d7bdca087f2e5353448d2f0bdd326
Zabbix versions 1.8.x through 2.2.x suffer from an XML external entity attack vulnerability.
58c8a52d7fba50ef0b5bff2b0868272d62ff90398c6d604f69d6a653058e7dcd
SOAPpy version 0.12.5 suffers from XXE and denial of service vulnerabilities.
fcbd1ab000fb47d02b209bbaf51f935e156706c4d194b9781d2f5dc2fdbd552a