Family: Databases --> Category: infos
Oracle Report Server XSS Vulnerability Scan
Vulnerability Scan Summary
Tests for a XSS in Oracle Reporting Server
Detailed Explanation for this Vulnerability Test
The remote host is running Oracle Report Server, a reporting application.
The remote version of this software is vulnerable to a cross site scripting
vulnerability which may allow a possible hacker to use the remote host to
perform a cross site scripting attack.
Solution : Disable acccess to the file 'reports/Tools/test.jsp'
Risk factor: Medium
Click HERE for more information and discussions on this network vulnerability scan.