SmartClient XML External Entity Injection Vulnerability
smartclient is an enterprise-class ajax framework , including a very good UI library , tool library and client-server data binding and other features . An XML External Entity Injection XXE vulnerability exists in the downloadWSDL feature of SmartClient 12.0. An attacker can exploit this...