Cross-site scripting (XSS) vulnerability in Oracle Application Server (OracleAS) Discussion Forum Portlet allows remote attackers to inject arbitrary web script or HTML via the (1) RowKeyValue parameter in the PORTAL schema; and the (2) title and (3) content input fields when creating an forum article.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-12-28T11:00:00
Updated: 2024-08-07T23:46:05.613Z
Reserved: 2005-12-28T00:00:00
Link: CVE-2005-4549
Vulnrichment
No data.
NVD
Status : Modified
Published: 2005-12-28T11:03:00.000
Modified: 2016-10-18T03:38:19.443
Link: CVE-2005-4549
Redhat
No data.