Description
Directory traversal vulnerability in PL/SQL Apache module in Oracle Oracle 9i Application Server allows remote attackers to access sensitive information via a double encoded URL with .. (dot dot) sequences.
Remediation
References
Related Vulnerabilities
WordPress Plugin Slideshow Multiple Cross-Site Scripting Vulnerabilities (2.1.14)
Jboss EAP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-12629)
WordPress Plugin WordPress Survey & Poll-Quiz, Survey and Poll Unspecified Vulnerability (1.5.8.5)
WordPress Plugin Echo Sign Multiple Cross-Site Scripting Vulnerabilities (1.1)
WordPress Plugin YITH WooCommerce Advanced Reviews Security Bypass (1.3.9)