Experts disclose security flaws in Oracle’s iPlanet Web Server
Security Affairs
MAY 11, 2020
An incomplete fix for CVE-2012-0516 XSS validation flaw allowed for this parameter to be abused in conjunction with “productNameHeight” and “productNameWidth” parameters for the injection of images into a domain. . This is due to an incomplete fix for CVE-2012-0516.” ” continues the report.
Let's personalize your content