CVE-2002-1636 Information

Description

Cross-site scripting (XSS) vulnerability in the htp PL/SQL package for Oracle 9i Application Server (9iAS) allows remote attackers to inject arbitrary web script or HTML via the cbuf parameter to htp.print.

Reference

http://www.nextgenss.com/papers/hpoas.pdf https://exchange.xforce.ibmcloud.com/vulnerabilities/10687