Vulnerabilities
Vulnerable Software
Oracle:  >> Html Db  Security Vulnerabilities
Multiple cross-site scripting (XSS) vulnerabilities in Oracle HTML DB (HTMLDB) 1.3 through 1.3.6 allow remote attackers to inject arbitrary web script or HTML, and subsequently execute SQL statements via the (1) p or (2) p_t02 parameters.
CVSS Score
6.8
EPSS Score
0.115
Published
2005-10-14
The manual installation of Oracle HTML DB (HTMLDB) 1.3 through 1.3.6 stores the SYS password in install.lst in plaintext, which allows local users to gain privileges.
CVSS Score
4.6
EPSS Score
0.001
Published
2005-10-14


Contact Us

Shodan ® - All rights reserved