Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Oracle Database Server Other Vulnerability - CVE-2007-2119 - Vulnerability Database
Oracle Database Server

Oracle Database Server Other Vulnerability - CVE-2007-2119

Medium
Reference: CVE-2007-2119
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2007-2119
Title: Oracle Database Server Other Vulnerability
Overview:

Cross-site scripting (XSS) vulnerability in boundary_rules.jsp in the Administration Front End for Oracle Enterprise (Ultra) Search as used in Database Server 9.2.0.8 10.1.0.5 and 10.2.0.2 and in Application Server 9.0.4.3 10.1.2.0.2 and 10.1.2.2.0 allows remote attackers to inject arbitrary HTML or web script via the EXPTYPE parameter aka SES01.