Improper Restriction of XML External Entity Reference
SimpleXML is vulnerable to an XXE vulnerability resulting SSRF, information disclosure and DoS.
Advisories for Maven/Org.simpleframework/Simple-Xml package
2017
SimpleXML is vulnerable to an XXE vulnerability resulting SSRF, information disclosure and DoS.