Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Oracle HTTP Server Other Vulnerability - CVE-2004-2115 - Vulnerability Database
Oracle HTTP Server

Oracle HTTP Server Other Vulnerability - CVE-2004-2115

Medium
Reference: CVE-2004-2115
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2004-2115
Title: Oracle HTTP Server Other Vulnerability
Overview:

Multiple cross-site scripting (XSS) vulnerabilities in Oracle HTTP Server 1.3.22 based on Apache allow remote attackers to execute arbitrary script as other users via the (1) action (2) username or (3) password parameters in an isqlplus request.