log4net: Highly configurable logging API for the CLI log4net Apache Log4net could made to expose sensitive information if it received a specially crafted configuration file.