Nokogiri before 1.5.4 is vulnerable to XXE attacks. References https://nvd.nist.gov/vuln/detail/CVE-2012-6685 https://github.com/sparklemotion/nokogiri/issues/693 https://bugzilla.redhat.com/show_bug.cgi?id=1178970 https://nokogiri.org/CHANGELOG.html#154-2012-06-12 https://github.com/advisories/GHSA-6wj9-77wq-jq7p
