CVSS: 8.5EPSS: 0%CPEs: 65EXPL: 1CVE-2008-4014 – Oracle Application Server Cross Site Scripting
https://notcve.org/view.php?id=CVE-2008-4014
14 Jan 2009 — Unspecified vulnerability in the Oracle BPEL Process Manager component in Oracle Application Server allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad sin especificar en el componente Oracle BPEL Process Manager en Oracle Application Server None permite a usuarios remotamente autentificados afectar la confidencialidad e integridad mediante vectores desconocidos. The Oracle Application Server (SOA) version 10.1.3.1.0 suffers from a cross site scripti... • https://packetstorm.news/files/id/73877 •
CVSS: 6.1EPSS: 7%CPEs: 2EXPL: 1CVE-2007-3553 – Oracle Rapid Install Web Server - Secondary Login Page Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2007-3553
03 Jul 2007 — Cross-site scripting (XSS) vulnerability in Rapid Install Web Server in Oracle Application Server 11i allows remote attackers to inject arbitrary web script or HTML via a URL to the "Secondary Login Page", as demonstrated using (1) pls/ and (2) pls/MSBEP004/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Rapid Install Web SErver de Oracle Application Server 11i permite a ... • https://www.exploit-db.com/exploits/30256 •
CVSS: 10.0EPSS: 38%CPEs: 5EXPL: 0CVE-2004-0385 – secadv01.txt
https://notcve.org/view.php?id=CVE-2004-0385
09 Apr 2004 — Heap-based buffer overflow in Oracle 9i Application Server Web Cache 9.0.4.0.0, 9.0.3.1.0, 9.0.2.3.0, and 9.0.0.4.0 allows remote attackers to execute arbitrary code via a long HTTP request method header to the Web Cache listener. NOTE: due to the vagueness of the Oracle advisory, it is not clear whether there are additional issues besides this overflow, although the advisory alludes to multiple "vulnerabilities." A heap overflow vulnerability exists in Oracle 9iAS / 10g Application Server Web Cache that al... • http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0078.html •