Description
The OHS component 1.0.2 through 10.x, when UseWebcacheIP is disabled, in Oracle Application Server allows remote attackers to bypass HTTP Server mod_access restrictions via a request to the webcache TCP port 7778.
Remediation
References
Related Vulnerabilities
Apache HTTP Server CVE-2016-5387 Vulnerability (CVE-2016-5387)
WordPress Plugin Comment Rating 'path' Parameter Cross-Site Scripting (2.9.20)
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-10002)
phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-16107)
WordPress Plugin Uploader Cross-Site Scripting and Arbitrary File Upload Vulnerabilities (1.0.4)