• info
• discussion
• exploit
• solution
• references

WebLogic Portal CVE-2008-0868 Cross-Site Scripting Vulnerability

WebLogic Portal is prone to a cross-site scripting vulnerability. Cross-site scripting (XSS) vulnerability in Groupspace in BEA WebLogic Portal 10.0 and 9.2 through Maintenance Pack 1 allows remote authenticated users to inject arbitrary web script or HTML via unknown vectors.