Description

Cross-site scripting (XSS) vulnerability in Oracle XML DB 9iR2 allows remote attackers to inject arbitrary web script or HTML via the query string in an HTTP request.

Remediation

References

CVE-2005-3204

Related Vulnerabilities

WordPress Plugin Wordpress Poll SQL Injection (36)

WordPress Plugin Export User Data Cross-Site Scripting (1.3.1)

Magento Improper Authorization Vulnerability (CVE-2021-28563)

WordPress Plugin Image Hover Effects Ultimate (Image Gallery, Effects, Lightbox, Comparison or Magnifier) Cross-Site Scripting (9.8.4)

OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-3736)

Severity

Medium

Classification

CVE-2005-3204

Tags

Missing Update Known Vulnerabilities