| CVE Description | CVSSv2 Base Score | Component | Product and Resolution |
|---|
| CVE-2007-6306 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability | 4.3 | JFreeChart | |
| CVE-2007-6307 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability | 4.3 |
This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.