Description

Unspecified vulnerability in the JPublisher component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4291, CVE-2014-4292, CVE-2014-4293, CVE-2014-4296, CVE-2014-4297, CVE-2014-4310, CVE-2014-6547, and CVE-2014-6477.

Remediation

References

CVE-2014-4290

Related Vulnerabilities

GibbonEdu Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-22868)

PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-2348)

WordPress Plugin WP Custom Fields Search Cross-Site Scripting (0.3.28)

WordPress Plugin Crayon Syntax Highlighter 'wp_load' Parameter Remote File Include (1.12.1)

WordPress Plugin WPMK Ajax Finder Cross-Site Request Forgery (1.0.1)

Severity

Medium

Classification

CVE-2014-4290

Tags

Missing Update Known Vulnerabilities