Unrated severityNVD Advisory· Published Jan 25, 2006· Updated Apr 16, 2026

CVE-2006-0428

Description

Unspecified vulnerability in BEA WebLogic Portal 8.1 SP3 through SP5, when using Web Services Remote Portlets (WSRP), allows remote attackers to access restricted web resources via crafted URLs.

Affected products

Oracle Corporation/Weblogic Portal3 versions
cpe:2.3:a:oracle:weblogic_portal:8.1:sp3:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:weblogic_portal:8.1:sp3:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_portal:8.1:sp4:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_portal:8.1:sp5:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

dev2dev.bea.com/pub/advisory/172nvdPatchVendor Advisory
securitytracker.com/idnvdPatch
secunia.com/advisories/18593nvd
www.osvdb.org/22767nvd
www.securityfocus.com/bid/16358nvd
www.vupen.com/english/advisories/2006/0312nvd
exchange.xforce.ibmcloud.com/vulnerabilities/24293nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000