0.006 Low
EPSS
Percentile
78.6%
WXPayUtil in WeChat Pay Java SDK allows XXE attacks involving a merchant notification URL.
github.com/mixzxu/wxpay-sdk
nvd.nist.gov/vuln/detail/CVE-2018-13439
packetstormsecurity.com/files/148390/WeChat-Pay-SDK-XXE-Injection.html