QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-19439

Back to search

CVE-2018-19439

Published: Dec 13, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

XSS exists in the Administration Console in Oracle Secure Global Desktop 4.4 20080807152602 (but was fixed in later versions including 5.4). helpwindow.jsp has reflected XSS via all parameters, as demonstrated by the sgdadmin/faces/com_sun_web_ui/help/helpwindow.jsp windowTitle parameter.

VendorProductVersions

n/a

n/a

affected
n/a

References

106006
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now