Exploit for #VU49796 Stored cross-site scripting in Oracle Business Intelligence Enterprise Edition

Published: 2021-01-25

Vulnerability identifier: #VU49796

Vulnerability risk: Medium

CVSSv3.1: 5.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2021-2003

CWE-ID: CWE-79

Exploitation vector: Network

Exploits in database: 1

January 25, 2021
- Oracle Business Intelligence Enterprise Edition 11.1.1.7.140715 - Stored XSS [Exploit-DB]

Impact: Information disclosure and data manipulation

Vulnerable software:
Oracle Business Intelligence Enterprise Edition
Other software / Other software solutions

Vendor: Oracle