A human-readable data serialization language, commonly used for configuration files.
Vulnerability exploited by hackers before it is known to the vendor.