2 matches found
CVE-2007-1506
Cross-site scripting XSS vulnerability in PORTAL.wwvmain.renderwarningscreen in the Oracle Portal 10g allows remote attackers to inject arbitrary web script or HTML via the 1 poldurl and 2 pnewurl parameters...
CVE-2007-1506
The CVE-2007-1506 entry describes a Cross‑site Scripting (XSS) vulnerability in Oracle Portal 10g, specifically in PORTAL.wwv_main.render_warning_screen, exploitable by supplying crafted values in the p_oldurl and p_newurl parameters. The affected software is Oracle Portal 10g; the underlying iss...