Description

Cross-site scripting (XSS) vulnerability in servlet/Spy in Dynamic Monitoring Services (DMS) in Oracle Application Server (OAS) 10g 10.1.2.0.0 allows remote attackers to inject arbitrary web script or HTML via the table parameter. NOTE: This may be related to CVE-2002-0563.

Remediation

References

CVE-2007-1609

Related Vulnerabilities

WordPress Plugin Catchers Helpdesk and Ticket system for Support Cross-Site Scripting (1.0.3)

MySQL CVE-2021-2304 Vulnerability (CVE-2021-2304)

Apache Tomcat Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2024-21733)

Python Integer Overflow or Wraparound Vulnerability (CVE-2016-9063)

Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-42128)

Severity

Medium

Classification

CVE-2007-1609

Tags

Missing Update Known Vulnerabilities