CVE-2002-1636

2002-12-31T05:00:00
ID CVE-2002-1636
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:29:00

Description

Cross-site scripting (XSS) vulnerability in the htp PL/SQL package for Oracle 9i Application Server (9iAS) allows remote attackers to inject arbitrary web script or HTML via the cbuf parameter to htp.print.