CVE-2002-2347 in Application Serverinformazioni

Riassunto

di MITRE

Cross-site scripting (XSS) vulnerability in Oracle Java Server Page (OJSP) demo files (1) hellouser.jsp, (2) welcomeuser.jsp and (3) usebean.jsp in Oracle 9i Application Server 9.0.2, 1.0.2.2, 1.0.2.1s and 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the text entry field.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

29/10/2007

Divulgazione

31/12/2002

Moderazione

accettato

Voce

VDB-19989

CPE

pronto

CWE

CWE-79 (confermato)

CVSS

4.3 (NVD)

EPSS

0.01704

KEV

Attività

molto basso

Settore

Telecommunication, Chemical, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-2347
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-2347
CVE Details	https://www.cvedetails.com/cve/CVE-2002-2347/

◂ Precedente Visione D'ensemble Il prossimo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!