Unspecified vulnerability in BEA WebLogic Portal 8.1 up to SP5 causes a JSR-168 Portlet to be retrieved from the cache for the wrong session, which might allow one user to see a Portlet of another user.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Weblogic_portal | Oracle | 8.1 | 8.1 |
Weblogic_portal | Oracle | 8.1 | 8.1 |
Weblogic_portal | Oracle | 8.1 | 8.1 |
Weblogic_portal | Oracle | 8.1 | 8.1 |
Weblogic_portal | Oracle | 8.1 | 8.1 |
Weblogic_portal | Oracle | 8.1 | 8.1 |