cbcvebase.
CVE-2005-0873
published 2005-05-02

CVE-2005-0873: Multiple cross-site scripting (XSS) vulnerabilities in test.jsp in Oracle Reports Server 10g (9.0.4.3.3) allow remote attackers to inject arbitrary web script…

PriorityP422medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
11.03%
95.4th percentile
Multiple cross-site scripting (XSS) vulnerabilities in test.jsp in Oracle Reports Server 10g (9.0.4.3.3) allow remote attackers to inject arbitrary web script or HTML via the (1) desname or (2) repprod parameter.

Affected

1 ranges
VendorProductVersion rangeFixed in
oracle10g_reports_server

Detection & IOCsextracted from sources · hover to see the quote

path/reports/examples/Tools/test.jsp
urlhttp://paolo/reports/examples/Tools/test.jsp?repprod&desname=' alert(document.cookie);
urlhttp://paolo/reports/examples/Tools/test.jsp?repprod" alert(document.cookie);
  • Monitor HTTP requests targeting the path /reports/examples/Tools/test.jsp for XSS payloads in the 'desname' or 'repprod' query parameters
  • Alert on requests to test.jsp containing script injection characters (e.g., single quotes, double quotes, angle brackets) in the 'desname' or 'repprod' parameters, particularly patterns attempting to access document.cookie
  • ·The vulnerable file test.jsp is located under the examples/Tools directory, which may be an optional or sample component of Oracle Reports Server 10g; verify its presence on the target system before prioritizing detection
  • ·The exploit PoC uses a placeholder hostname ('paolo'); the vulnerable path /reports/examples/Tools/test.jsp should be matched relative to the actual server hostname in detection rules
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.