Описание
Multiple cross-site scripting (XSS) vulnerabilities in test.jsp in Oracle Reports Server 10g (9.0.4.3.3) allow remote attackers to inject arbitrary web script or HTML via the (1) desname or (2) repprod parameter.
Multiple cross-site scripting (XSS) vulnerabilities in test.jsp in Oracle Reports Server 10g (9.0.4.3.3) allow remote attackers to inject arbitrary web script or HTML via the (1) desname or (2) repprod parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-0873
- http://marc.info/?l=bugtraq&m=111168323804203&w=2
- http://secunia.com/advisories/17250
- http://www.kb.cert.org/vuls/id/210524
- http://www.oracle.com/technetwork/topics/security/cpuoct2005-090497.html
- http://www.oracle.com/technology/deploy/security/pdf/public_vuln_to_advisory_mapping.html
- http://www.securityfocus.com/bid/12892
- http://www.securityfocus.com/bid/15134
- http://www.us-cert.gov/cas/techalerts/TA05-292A.html
EPSS
Процентиль: 99%
0.67385
Средний
CVE ID
Связанные уязвимости
nvd
почти 21 год назад
Multiple cross-site scripting (XSS) vulnerabilities in test.jsp in Oracle Reports Server 10g (9.0.4.3.3) allow remote attackers to inject arbitrary web script or HTML via the (1) desname or (2) repprod parameter.
EPSS
Процентиль: 99%
0.67385
Средний