Description

Oracle EBS iesfootprint script is vulnerable to an SQL injection vulnerability, which may allow an attacker to execute malicious SQL statements in the OEBS database server.

Remediation

Upgrade to the latest version of Oracle E-Business Suite

References

[ERPSCAN-17-021] SQL Injection in E-Business Suite IESFOOTPRINT

Related Vulnerabilities

WordPress Plugin WP Shop Multiple SQL Injection Vulnerabilities (3.4.3.15)

Apache Solr Deserialization of untrusted data via jmx.serviceUrl

WordPress Plugin Live Forms-Visual Form Builder SQL Injection (3.0.1)

WordPress Plugin All Video Gallery 'vid' Parameter Multiple SQL Injection Vulnerabilities (1.1)

WordPress Plugin Users Ultra Membership Multiple Vulnerabilities (1.5.62)

Severity

High

Classification

CWE-89 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Tags

Acumonitor