Loading
Multiple cross-site scripting (XSS) vulnerabilities in BEA WebLogic Express and WebLogic Server 6.1 through SP7, 7.0 through SP7, 8.1 through SP5, 9.0 GA, and 9.1 GA allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Cite this page
CVE-2007-2694. CVEDatabase.com. Retrieved 1 May 2026. https://cvedatabase.com/cve/CVE-2007-2694
Use Bea vendor hub and Weblogic Server product page to widen CVE-2007-2694 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2008-3257, CVE-2008-0897 and CVE-2008-0901 for nearby disclosures in the same product family.