CVE-2015-0254
Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity (XXE) attacks via a crafted XSLT extension in a (1)
Date published : 2015-03-09
http://www.securityfocus.com/bid/72809
http://www.securityfocus.com/archive/1/534772/100/0/threaded