CVE-2008-0870

CVE-2008-0870 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

BEA WebLogic Portal 10.0 and 9.2 through Maintenance Pack 2, under certain circumstances, can redirect a user from the https:// URI for the Portal Administration Console to an http URI, which allows remote attackers to sniff the session.

Learn more about our Web App Pen Testing.