2 matches found
CVE-2018-16959
An issue was discovered in Oracle WebCenter Interaction Portal 10.3.3. The portal component is delivered with an insecure default User Profile community configuration that allows anonymous users to retrieve the account names of all portal users via /portal/server.pt/user/user/ requests. When WCI ...
CVE-2018-16959
An observed vulnerability in Oracle WebCenter Interaction Portal 10.3.3 arises from an insecure default User Profile configuration in the portal component. This allows anonymous users to retrieve the account names of portal users via /portal/server.pt/user/user/ requests. When WebCenter Interacti...