Description

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to JavaServer Faces.

Remediation

References

CVE-2016-3505

Related Vulnerabilities

WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Cross-Site Scripting (1.3.6.2)

MongoDb Insufficiently Protected Credentials Vulnerability (CVE-2021-32039)

Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-10095)

WordPress Plugin WP Events Calendar 'event_id' Parameter SQL Injection (6.5.2)

WordPress Plugin WordPress Calls to Action Unspecified Vulnerability (2.3.1)

Severity

High

Classification

CVE-2016-3505 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities