CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2001-0126

Oracle XSQL servlet 1.0.3.0 and earlier allows remote attackers to execute arbitrary Java code by redirecting the XSQL server to another source via the xml-stylesheet parameter in the xslt stylesheet.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.0%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=97906670012796&w=2
http://marc.info/?l=bugtraq&m=98027700625521&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/5905
http://marc.info/?l=bugtraq&m=97906670012796&w=2
http://marc.info/?l=bugtraq&m=98027700625521&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/5905

Products affected by CVE-2001-0126

Oracle » Oracle8i » Version: 8.1.7

cpe:2.3:a:oracle:oracle8i:8.1.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-0126

Products

Pricing

Contact Us