Description
Cross-site scripting (XSS) vulnerability in the htp PL/SQL package for Oracle 9i Application Server (9iAS) allows remote attackers to inject arbitrary web script or HTML via the cbuf parameter to htp.print.
Remediation
References
Related Vulnerabilities
MySQL Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2009-4030)
e107 Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-2020)
WordPress Plugin RSVPMaker SQL Injection (7.8.1)
Jenkins Improper Input Validation Vulnerability (CVE-2017-1000394)
Oracle Database Server CVE-2009-1007 Vulnerability (CVE-2009-1007)