Description

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to JavaServer Faces.

Remediation

References

CVE-2016-3505

Related Vulnerabilities

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-1113)

WordPress Plugin Easy Contact Form Pro Cross-Site Scripting (1.1.1.8)

MySQL CVE-2019-2631 Vulnerability (CVE-2019-2631)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4584)

WordPress Plugin MF Gig Calendar Cross-Site Scripting (1.1)

Severity

High

Classification

CVE-2016-3505 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities