Vulnerabilities > CVE-2012-0083 - Remote Oracle WebCenter Content vulnerability in Oracle Fusion Middleware

CVSS 6.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

oracle

nessus

NVD

Published: 2012-01-18

Updated: 2017-08-29

Summary

Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 7.5.2, 10.1.3.5.1, 11.1.1.3, 11.1.1.4, and 11.1.1.5 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Search.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Fusion Middleware 7.5.2 Oracle Fusion Middleware 10.1.3.5.1 Oracle Fusion Middleware 11.1.1.3.0 Oracle Fusion Middleware 11.1.1.4.0 Oracle Fusion Middleware 11.1.1.5.0	5

Nessus

NASL family	CGI abuses
NASL id	ORACLE_WEBCENTER_CONTENT_IDCPLG_SQL_INJECTION.NASL
description	The Oracle WebCenter Content install on the remote host does not properly sanitize the
last seen	2020-06-01
modified	2020-06-02
plugin id	57980
published	2012-02-16
reporter	This script is Copyright (C) 2012-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/57980
title	Oracle WebCenter Content 'GET_SEARCH_RESULTS' SQL Injection

Summary

Vulnerable Configurations

Nessus

References