CVE-2011-0836
Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - '/jde/E1Menu.maf?jdeowpBackButtonProtect' Cross-Site Scripting
Severity Score
3.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
5
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC.
Vulnerabilidad sin especificar en Oracle JD Edwards EnterpriseOne Tools 8.9 GA hasta la 8.98.4.1 y OneWorld Tools hasta la 24.1.3 permite a usuarios autenticados remotos vulnerar la integridad, relacionado con "Web Runtime SEC".
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2011-02-04 CVE Reserved
- 2011-04-19 First Exploit
- 2011-04-20 CVE Published
- 2024-09-16 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (6)
URL | Tag | Source |
---|
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/35638 | 2011-04-19 | |
https://www.exploit-db.com/exploits/35639 | 2011-04-19 | |
https://www.exploit-db.com/exploits/35640 | 2011-04-19 | |
https://www.exploit-db.com/exploits/35642 | 2011-04-19 | |
https://www.exploit-db.com/exploits/35641 | 2011-04-19 |
URL | Date | SRC |
---|---|---|
http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html | 2012-08-03 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Oracle Search vendor "Oracle" | Enterpriseone Tools Search vendor "Oracle" for product "Enterpriseone Tools" | 8.9 Search vendor "Oracle" for product "Enterpriseone Tools" and version "8.9" | - |
Affected
| ||||||
Oracle Search vendor "Oracle" | Jd Edwards Enterpriseone Search vendor "Oracle" for product "Jd Edwards Enterpriseone" | 8.9 Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.9" | budle14 |
Affected
| ||||||
Oracle Search vendor "Oracle" | Jd Edwards Enterpriseone Search vendor "Oracle" for product "Jd Edwards Enterpriseone" | 8.9 Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.9" | bundle14 |
Affected
| ||||||
Oracle Search vendor "Oracle" | Jd Edwards Enterpriseone Search vendor "Oracle" for product "Jd Edwards Enterpriseone" | 8.9 Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.9" | bundle21 |
Affected
| ||||||
Oracle Search vendor "Oracle" | Jd Edwards Enterpriseone Search vendor "Oracle" for product "Jd Edwards Enterpriseone" | 8.9 Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.9" | bundle9 |
Affected
| ||||||
Oracle Search vendor "Oracle" | Jd Edwards Enterpriseone Search vendor "Oracle" for product "Jd Edwards Enterpriseone" | 8.9.18 Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.9.18" | - |
Affected
| ||||||
Oracle Search vendor "Oracle" | Jd Edwards Enterpriseone Search vendor "Oracle" for product "Jd Edwards Enterpriseone" | 8.98.1.4 Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.98.1.4" | - |
Affected
| ||||||
Oracle Search vendor "Oracle" | Jd Edwards Enterpriseone Search vendor "Oracle" for product "Jd Edwards Enterpriseone" | 8.98.2.1 Search vendor "Oracle" for product "Jd Edwards Enterpriseone" and version "8.98.2.1" | - |
Affected
| ||||||
Oracle Search vendor "Oracle" | Jd Edwards Enterpriseone Ep Search vendor "Oracle" for product "Jd Edwards Enterpriseone Ep" | 8.9 Search vendor "Oracle" for product "Jd Edwards Enterpriseone Ep" and version "8.9" | - |
Affected
| ||||||
Oracle Search vendor "Oracle" | Oneworld Tools Search vendor "Oracle" for product "Oneworld Tools" | <= 24.1.3 Search vendor "Oracle" for product "Oneworld Tools" and version " <= 24.1.3" | - |
Affected
| ||||||
Oracle Search vendor "Oracle" | Peoplesoft And Jdedwards Product Suite Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" | 8.9 Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9" | - |
Affected
| ||||||
Oracle Search vendor "Oracle" | Peoplesoft And Jdedwards Product Suite Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" | 8.9 Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9" | bundle23 |
Affected
| ||||||
Oracle Search vendor "Oracle" | Peoplesoft And Jdedwards Product Suite Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" | 8.9 Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9" | bundle37 |
Affected
| ||||||
Oracle Search vendor "Oracle" | Peoplesoft And Jdedwards Product Suite Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" | 8.9 Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9" | bundle38 |
Affected
| ||||||
Oracle Search vendor "Oracle" | Peoplesoft And Jdedwards Product Suite Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" | 8.9 Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9" | bundle41 |
Affected
| ||||||
Oracle Search vendor "Oracle" | Peoplesoft And Jdedwards Product Suite Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" | 8.9 Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.9" | gp_2010-e |
Affected
| ||||||
Oracle Search vendor "Oracle" | Peoplesoft And Jdedwards Product Suite Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" | 8.98.4.1 Search vendor "Oracle" for product "Peoplesoft And Jdedwards Product Suite" and version "8.98.4.1" | - |
Affected
| ||||||
Oracle Search vendor "Oracle" | Peoplesoft And Jdedwards Suite Scm Search vendor "Oracle" for product "Peoplesoft And Jdedwards Suite Scm" | 8.9 Search vendor "Oracle" for product "Peoplesoft And Jdedwards Suite Scm" and version "8.9" | bundle37 |
Affected
|