EIP-2026-104377

PRE-CVE

Oracle Fatwire 6.3 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104377. PoCs published by J. Francisco Bolivar.

AI-analyzed exploit summary This writeup describes multiple vulnerabilities in Oracle Fatwire 6.3, including XSS, path traversal, and blind SQL injection. It provides example payloads and endpoints but does not include executable exploit code.

Description

Oracle Fatwire 6.3 - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP

by J. Francisco Bolivar · textwebappsmultiple

https://www.exploit-db.com/exploits/50167

View Code ZIP pw:eip

This writeup describes multiple vulnerabilities in Oracle Fatwire 6.3, including XSS, path traversal, and blind SQL injection. It provides example payloads and endpoints but does not include executable exploit code.

Classification

Writeup 90%

Attack Type

Xss | Info Leak | Sqli

Complexity

Trivial

Reliability

Theoretical

Target: Oracle Fatwire 6.3

No auth needed

Prerequisites: network access to the target · vulnerable version of Oracle Fatwire

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059.007 - JavaScript T1205 - Traffic Signaling

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026