CVE-2008-6192

Currently unrated

Key Information:

Vendor: Oracle
Status: Java System Portal Server
Vendor: CVE Published:; 19 February 2009

Summary

Multiple cross-site scripting (XSS) vulnerabilities in unspecified Portlets in Sun Java System Portal Server 7.0 and 7.1 allow remote attackers to inject arbitrary web script or HTML via unknown vectors.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-26-...

vendor-advisoryx_refsource_SUNALERT

http://www.securityfocus.com/bid/30738

vdb-entryx_refsource_BID

http://www.vupen.com/english/advisories/2008/2404

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Feb 19, 2009
Vulnerability Reserved
Feb 19, 2009