CVE-2005-2379 in Databaseinfo

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Oracle Reports 9.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) debug parameter to showenv, (2) test parameter to parsequery, or (3) delimiter or (4) CELLWRAPPER parameter to rwservlet.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

07/26/2005

Disclosure

07/26/2005

Entries

1: VDB-1633

CPE

ready

CVSS

6.3

EPSS

0.00625

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2005-2379
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2005-2379
CVE Detailshttps://www.cvedetails.com/cve/CVE-2005-2379/

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!