Bea_systems Weblogic_portal
5 CVEs affecting Bea_systems Weblogic_portal. Latest disclosed: 2008-02-22. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2008-0896 | | 2008-02-22 | BEA WebLogic Portal 10.0 and 9.2 through MP1, when an administrator deletes a single instance of a content portlet, removes entitlement policies for other cont… | |
CVE-2008-0870 | | 2008-02-21 | BEA WebLogic Portal 10.0 and 9.2 through Maintenance Pack 2, under certain circumstances, can redirect a user from the https:// URI for the Portal Administrati… | |
CVE-2008-0868 | | 2008-02-21 | Cross-site scripting (XSS) vulnerability in Groupspace in BEA WebLogic Portal 10.0 and 9.2 through Maintenance Pack 1 allows remote authenticated users to inje… | |
CVE-2008-0865 | | 2008-02-21 | Unspecified vulnerability in BEA WebLogic Portal 8.1 through SP6 allows remote attackers to bypass entitlements for instances of a floatable WLP portlet via un… | |
CVE-2008-0864 | | 2008-02-21 | Admin Tools in BEA WebLogic Portal 8.1 SP3 through SP6 can inadvertently remove entitlements for pages when an administrator edits the page definition label, w… |