Description

Multiple unspecified vulnerabilities in Oracle Reports Developer component in Oracle Application Server 9.0.4.3 and 10.1.2.0.2, and Oracle E-Business Suite and Applications 11.5.10CU2, have unknown impact and remote attack vectors, aka Vuln# (1) REP01 and (2) REP02. NOTE: as of 20061027, Oracle has not disputed reports from a reliable researcher that these issues are related to (a) showenv and (b) parsequery for REP01, and (c) cellwrapper and (d) delimiter for REP02.

Remediation

References

CVE-2006-5359

Related Vulnerabilities

MediaWiki Other Vulnerability (CVE-2004-2185)

WordPress Plugin Side Menu-add fixed side buttons SQL Injection (3.1.3)

Drupal Other Vulnerability (CVE-2006-1226)

Liferay DXP Deserialization of Untrusted Data Vulnerability (CVE-2020-15842)

WordPress Plugin Loan Comparison Multiple Cross-Site Scripting Vulnerabilities (1.5.2)

Severity

Critical

Classification

CVE-2006-5359

Tags

Missing Update Known Vulnerabilities