Description

Cross-site scripting (XSS) vulnerability in servlet/Spy in Dynamic Monitoring Services (DMS) in Oracle Application Server (OAS) 10g 10.1.2.0.0 allows remote attackers to inject arbitrary web script or HTML via the table parameter. NOTE: This may be related to CVE-2002-0563.

Remediation

References

CVE-2007-1609

Related Vulnerabilities

Plone CMS URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-7137)

Apache Traffic Server CVE-2023-41752 Vulnerability (CVE-2023-41752)

PHP Numeric Errors Vulnerability (CVE-2016-4346)

phpMyFAQ 7PK - Security Features Vulnerability (CVE-2014-6050)

Liferay Portal Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-25143)

Severity

Medium

Classification

CVE-2007-1609

Tags

Missing Update Known Vulnerabilities