4 matches found
Oracle Secure Global Desktop Administration Console 4.4 - Cross-Site Scripting
Oracle Secure Global Desktop Administration Console 4.4 contains a reflected cross-site scripting vulnerability in helpwindow.jsp via all parameters, as demonstrated by the sgdadmin/faces/comsunwebui/help/helpwindow.jsp windowTitle parameter. id: CVE-2018-19439 info: name: Oracle Secure Global...
CVE-2018-19439
Oracle Secure Global Desktop (SGD) Administration Console 4.4 contains a reflected Cross-Site Scripting vulnerability in helpwindow.jsp, exploitable via all parameters (notably windowTitle). The underlying issue is reflected XSS in helpwindow.jsp that can execute arbitrary script in a victim’s br...
Oracle Secure Global Desktop Administration Console 4.4 Cross Site Scripting Vulnerability
Oracle Secure Global Desktop Administration Console version 4.4 build 20080807152602 suffers from cross site scripting vulnerabilities. alert"XSS" helpFile=concepts.html&pageTitle=Administrator Help&mastheadUrl=/images/productNameSecondaryMasthead.png&mastheadDescription=Sun Secure Global Desktop...
Oracle Secure Global Desktop Administration Console 4.4 Cross Site Scripting
alert"XSS" helpFile=concepts.html&pageTitle=Administrator Help&mastheadUrl=/images/productNameSecondaryMasthead.png&mastheadDescription=Sun Secure Global Desktop Administration&jspPath=/sgdadmin/faces/comsunwebui/help/&mastheadHeight=40&mastheadWidth=20 Vulnerables parameters: windowTitle,...