Vulnerabilities

CVE-2008-0869

by Fred · 20/02/2008

Cross-site scripting (XSS) vulnerability in BEA WebLogic Workshop 8.1 through SP6 and Workshop for WebLogic 9.0 through 10.0 allows remote attackers to inject arbitrary web script or HTML via a "framework defined request parameter" when using WebLogic Workshop or Apache Beehive NetUI framework with page flows.

Date published : 2008-02-20

http://dev2dev.bea.com/pub/advisory/263

http://www.securitytracker.com/id?1019438

Similar

Tags: Cybersecurity Alert