Oracle Applications/Portal versions 9i and 10g suffer from cross site scripting vulnerabilities.
5b903f77def68bd3894d4ffe4af3835c54da78e7599fb0ef3aad439f57a5fd37
exploit for Oracle 10g 10.2.0.2.0.
5bdd48609fbc48eaa4e5f651c41fd237a9522c5bd339aa23e7688596c66c5426