Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Oracle Database Server CVE-2007-0273 Vulnerability (CVE-2007-0273)

Description

Unspecified vulnerability in Oracle Database 9.0.1.5, 9.2.0.8, 10.1.0.5, and 10.2.0.3 has unknown impact and attack vectors related to XMLDB, aka DB06. NOTE: as of 20070123, Oracle has not disputed claims by a reliable researcher that DB06 is for multiple cross-site scripting (XSS) vulnerabilities.

Remediation

References

Related Vulnerabilities

MediaWiki Insecure Storage of Sensitive Information Vulnerability (CVE-2021-36127)

Envoy Proxy Improper Input Validation Vulnerability (CVE-2019-9900)

WordPress Plugin Teamleader CRM Forms Cross-Site Scripting (2.0.0)

Jboss EAP Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2025-5731)

LiteSpeed Web Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4871)

Severity

Medium

Classification

CVE-2007-0273

Tags

Missing Update Known Vulnerabilities