xml injection

http://www.securityfocus.com/archive/1/528177/30/0/threaded

http://www.gopivotal.com/security/cve-2013-4152 https://github.com/SpringSource/spring-framework/pull/317 (Spring OXM) https://jira.springsource.org/browse/SPR-10806 (Spring MVC)

http://archive.cert.uni-stuttgart.de/bugtraq/2002/10/msg00421.html