Unrated severityNVD Advisory· Published Jul 14, 2009· Updated Jun 16, 2026
CVE-2009-1968
CVE-2009-1968
Description
Unspecified vulnerability in the Secure Enterprise Search component in Oracle Database 10.1.8.3 allows remote attackers to affect integrity via unknown vectors. NOTE: the previous information was obtained from the July 2009 CPU. Oracle has not commented on claims from an established researcher that this is cross-site scripting (XSS) via the search_p_groups parameter in search/query/search.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- cpe:2.3:a:oracle:database_server:10.1.8.3:*:*:*:*:*:*:*
- Range: 10.1.8.3
- Range: 10.1.8.3
Patches
Vulnerability mechanics
References
9- www.vupen.com/english/advisories/2009/1900nvdPatchVendor Advisory
- secunia.com/advisories/35776nvdVendor Advisory
- archives.neohapsis.com/archives/bugtraq/2009-07/0110.htmlnvd
- dsecrg.com/pages/vul/show.phpnvd
- osvdb.org/55892nvd
- www.oracle.com/technetwork/topics/security/cpujul2009-091332.htmlnvd
- www.securityfocus.com/bid/35681nvd
- www.securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/51754nvd
News mentions
0No linked articles in our index yet.