Unrated severityNVD Advisory· Published Nov 3, 2003· Updated Jun 16, 2026
CVE-2003-1193
CVE-2003-1193
Description
Multiple SQL injection vulnerabilities in the Portal DB (1) List of Values (LOVs), (2) Forms, (3) Hierarchy, and (4) XML components packages in Oracle Oracle9i Application Server 9.0.2.00 through 3.0.9.8.5 allow remote attackers to execute arbitrary SQL commands via the URL.
Affected products
11cpe:2.3:a:oracle:application_server_portal:3.0.9.8.5:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:application_server_portal:3.0.9.8.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:application_server_portal:9.0.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:application_server_portal:9.0.2.3a:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:application_server_portal:9.0.2.3b:*:*:*:*:*:*:*
cpe:2.3:a:oracle:oracle9i:9.0.2:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:oracle:oracle9i:9.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:oracle9i:9.0.2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:oracle9i:9.0.2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:oracle9i:9.0.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:oracle9i:9.0.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:oracle9i:9.0.2.3:*:*:*:*:*:*:*
- Range: >=9.0.2.00, <=3.0.9.8.5
Patches
Vulnerability mechanics
References
4- otn.oracle.com/deploy/security/pdf/2003alert61.pdfnvdPatch
- www.securityfocus.com/archive/1/343520nvdPatchVendor Advisory
- www.securityfocus.com/bid/8966nvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/13593nvd
News mentions
0No linked articles in our index yet.