CVE-2005-2379 Information

Feb 14, 2021 cve

Description

Multiple cross-site scripting (XSS) vulnerabilities in Oracle Reports 9.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) debug parameter to showenv (2) test parameter to parsequery or (3) delimiter or (4) CELLWRAPPER parameter to rwservlet.

Reference

http://marc.info/?l=bugtraq&m=112181649831863&w=2 http://www.red-database-security.com/advisory/oracle_reports_various_css.html

Share on: