CakePHP versions 2.x through 2.2.0-RC2 suffer from a XXE injection vulnerability.
54d1c4dda8e08667e5b5c0da52af3bfbbf429c685ad10b6ddb43edebd154ffb5
FileCOPA FTP Server version 6.01 suffers from a directory traversal vulnerability.
21c94bcd110be3bdfecad65115a76a2216f0eb4852edf3f1e6c28249808c6303