Description
Format string vulnerability in the administrative pages of the PL/SQL module for Oracle Application Server 4.0.8 and 4.0.8 2 allows remote attackers to execute arbitrary code.
Remediation
References
Related Vulnerabilities
WordPress 4.8.x Cross-Domain Flash Injection Vulnerability (4.8 - 4.8.4)
XWiki Missing Authentication for Critical Function Vulnerability (CVE-2022-24820)
WordPress Plugin Import all XML, CSV & TXT into WordPress Security Bypass (6.4.1)
WordPress Plugin HTML5 AV Manager for WordPress 'custom.php' Arbitrary File Upload (0.2.7)