Rewterz Threat Advisory – CVE-2016-1000031 – Oracle Identity Analytics Apache Commons FileUpload Deserialization Security Bypass Vulnerability
April 18, 2019Rewterz Threat Advisory – Oracle Siebel CRM Update for Multiple Vulnerabilities
April 18, 2019Severity
Medium
Analysis summary
jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
Impact
Cross Site Scripting
Affected Vendors
Oracle
Affected Products
Oracle Fusion Middleware MapViewer 12.2.1.3.0.
Remediation
Apply update.