Security SAP NetWeaver AS JAVA 7.4 XXE Injection November 21, 2016 007admin Leave a comment SAP NetWeaver AS JAVA version 7.4 suffers from an XML external entity (XXE) injection vulnerability.