Oracle E-Business Suite 12.1.3 XXE Injection

October 29, 2015 007admin

Oracle E-Business Suite version 12.1.3 suffers from an XXE injection vulnerability in the /OA_HTML/copxml servlet.

Software and Security Information