Vulnerability CVE-2014-2399

Vulnerability CVE-2014-2399

Published: 2014-04-15 Modified: 2014-04-16

Description:

	Topic	Author	Date
Med.	Endeca Latitude 2.2.2 Cross Site Request Forgery	RedTeam	26.06.2014

Type:

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Oracle -> Fusion middleware

http://packetstormsecurity.com/files/127222/Endeca-Latitude-2.2.2-Cross-Site-Request-Forgery.html

http://seclists.org/fulldisclosure/2014/Jun/123

http://www.exploit-db.com/exploits/33897

http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html

http://www.securityfocus.com/archive/1/532556/100/0/threaded

http://www.securityfocus.com/bid/66864