Security Oracle E-Business Suite 12.1.3 XXE Injection October 29, 2015 007admin Leave a comment Oracle E-Business Suite version 12.1.3 suffers from an XXE injection vulnerability in the /OA_HTML/oramipp_lpr servlet.