XSS in Bea Weblogic_server

CVE-2008-0902

Multiple cross-site scripting (XSS) vulnerabilities in BEA WebLogic Server and Express 6.1 through 10.0 MP1 allow remote attackers to inject arbitrary web script or HTML via unspecified samples. NOTE: this might be the same issue as CVE-2…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.010 (59.1th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References