Description

Unspecified vulnerability in the JPublisher component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4290, CVE-2014-4291, CVE-2014-4292, CVE-2014-4293, CVE-2014-4296, CVE-2014-4297, CVE-2014-6547, and CVE-2014-6477.

Remediation

References

CVE-2014-4310

Related Vulnerabilities

Oracle Database Server Other Vulnerability (CVE-2001-1041)

Magento XML Injection (aka Blind XPath Injection) Vulnerability (CVE-2022-34253)

Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-2221)

PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-3007)

WordPress Plugin Allow PHP in Posts and Pages 'id' Parameter SQL Injection (2.0.0.RC1)

Severity

Medium

Classification

CVE-2014-4310

Tags

Missing Update Known Vulnerabilities