Spring Integration (spring-integration-xml and spring-integration-ws modules), versions 4.3.18, 5.0.10, 5.1.1, and older unsupported versions, were susceptible to XML External Entity Injection (XXE) when receiving XML data from untrusted sources.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware spring integration |
||
oracle retail customer management and segmentation foundation 18.0 |
||
oracle retail customer management and segmentation foundation 16.0 |
||
oracle retail customer management and segmentation foundation 17.0 |