BEA » Liquid Data : Security Vulnerabilities, CVEs,
Multiple cross-site scripting (XSS) vulnerabilities in WebLogic Integration 7.0 and 2.0, Liquid Data 1.1, and WebLogic Server and Express 5.1 through 7.0, allow remote attackers to execute arbitrary web script and steal authentication credentials via (1) a forward instruction to the Servlet container or (2) other vulnerabilities in the WebLogic Server console application.
Max CVSS
6.8
EPSS Score
0.19%
Published
2003-10-20
Updated
2008-09-05
1 vulnerabilities found