CVE-2014-0003

The XSLT component in Apache Camel 2.11.x before 2.11.4, 2.12.x before 2.12.3, and possibly earlier versions allows remote attackers to execute arbitrary Java methods via a crafted message.

Date published : 2014-03-20

http://www.securityfocus.com/bid/65902

http://camel.apache.org/security-advisories.data/CVE-2014-0003.txt.asc