[CRITICAL] Potential XXE/XEE attacks using PHP functions: simplexml_load_*, DOMDocument::loadXML, and xml_parse

PKSA-z96z-pgwj-vpjy GHSA-8x2v-pcg7-94f4

Affected version: >=2.1.0,<2.1.6|>=2.2.0,<2.2.6

Reported by:
GitHub, FriendsOfPHP/security-advisories