Vulnerabilities > CVE-2010-3581 - BPEL Console Cross Site Scripting vulnerability in Oracle Fusion Middleware 11.1.1.1.0/11.1.1.2.0
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Unspecified vulnerability in the BPEL Console component in Oracle Fusion Middleware 11.1.1.1.0 and 11.1.1.2.0 allows remote authenticated users to affect integrity via unknown vectors.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | Oracle Fusion Middleware 10.1.2/10.1.3 BPEL Console Cross Site Scripting Vulnerability. CVE-2010-3581. Webapps exploit for jsp platform |
| id | EDB-ID:34834 |
| last seen | 2016-02-04 |
| modified | 2010-10-12 |
| published | 2010-10-12 |
| reporter | Alexander Polyakov |
| source | https://www.exploit-db.com/download/34834/ |
| title | Oracle Fusion Middleware 10.1.2/10.1.3 BPEL Console Cross-Site Scripting Vulnerability |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/95224/DSECRG-09-032.txt |
| id | PACKETSTORM:95224 |
| last seen | 2016-12-05 |
| published | 2010-10-28 |
| reporter | Sh2kerr |
| source | https://packetstormsecurity.com/files/95224/Oracle-BPEL-Console-10.1.3.3.0-Cross-Site-Scripting.html |
| title | Oracle BPEL Console 10.1.3.3.0 Cross Site Scripting |