Exploit for #VU24421 Improper input validation in Oracle Database Server

Cybersecurity Help s.r.o.

Published: 2020-09-23

Vulnerability identifier: #VU24421

Vulnerability risk: Low

CVSSv4.0: 2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2020-2527

CWE-ID: CWE-20

Exploitation vector: Network

Exploits in database: 1

September 23, 2020
- CVE-2020-2527 (PHPGurukul hostel-management-system 2.1 allows XSS via Guardian Name, Guardian Relation, Guardian Contact no, Address, City) [Github]

Vulnerable software:
Oracle Database Server
Server applications / Database software

Vendor: Oracle