xcat v1.0.2 releases: exploit and investigate blind XPath injection vulnerabilities