Description
SQL injection vulnerability in the query.xsql sample page in Oracle 9i Application Server (9iAS) allows remote attackers to execute arbitrary code via the sql parameter.
Remediation
References
Related Vulnerabilities
RubyGems Deserialization of Untrusted Data Vulnerability (CVE-2017-0903)
Envoy Proxy Other Vulnerability (CVE-2024-34363)
phpBB URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2015-3880)
Jboss EAP Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-3859)
MediaWiki Credentials Management Errors Vulnerability (CVE-2015-8626)