CVE-2014-4769
CVE-2014-4769 affects IBM WebSphere Commerce versions 6.x (up to 6.0.0.11) and 7.x (up to 7.0.0.8). The vulnerability arises from an XML External Entity (XXE) issue where remote authenticated users can read arbitrary files or induce TCP connections to intranet resources by supplying XML data cont...