Oracle E-Business Suite 12.1.3 XXE Injection

Oracle E-Business Suite version 12.1.3 suffers from an XXE injection vulnerability in the /OA_HTML/copxml servlet.

007 Software