2018-09-18 02:00:00
mitre
PUBLISHED
The Oracle WebCenter Interaction Portal 10.3.3 does not implement protection against Cross-site Request Forgery in its design. The impact is sensitive actions in the portal (such as changing a portal users password). NOTE: this CVE is assigned by MITRE and isnt validated by Oracle because Oracle WebCenter Interaction Portal is out of support.