CVE-2008-2589
CVE-2008-2589 concerns an SQL injection in Oracle Application Server’s WWV_RENDER_REPORT package used by the Oracle Portal component. Affects Oracle Portal integrated in Oracle Application Server 9.0.4.3, 10.1.2.2, and 10.1.4.1. The vulnerability arises from how the second argument to SHOW execut...