3 matches found
EUVD-2018-8741
Malware in sbrugna...
Cross site scripting
The AjaxView::DisplayResponse function of the portalpages.dll assembly in Oracle WebCenter Interaction Portal 10.3.3 is vulnerable to reflected cross-site scripting XSS. User input from the name parameter is unsafely reflected in the server response. NOTE: this CVE is assigned by MITRE and isn't...
CVE-2018-16953
The CVE-2018-16953 entry affects Oracle WebCenter Interaction Portal 10.3.3. Specifically, the AjaxView::DisplayResponse() function in portalpages.dll reflects unsanitized user input from the name parameter in the server response, enabling reflected cross-site scripting (XSS). The vulnerability i...