Unspecified vulnerability in BEA WebLogic Portal 8.1 up to SP5 causes a JSR-168 Portlet to be retrieved from the cache for the wrong session, which might allow one user to see a Portlet of another user.
CPE | Name | Operator | Version |
---|---|---|---|
weblogic_portal | eq | 8.1 | |
weblogic_portal | eq | 8.1 sp1 | |
weblogic_portal | eq | 8.1 sp2 | |
weblogic_portal | eq | 8.1 sp3 | |
weblogic_portal | eq | 8.1 sp4 | |
weblogic_portal | eq | 8.1 sp5 |