Unspecified vulnerability in the Oracle Clinical Remote Data Capture Option component in Oracle Industry Applications 4.6.0.x, 4.6.2, and 4.6.3 allows remote authenticated users to affect confidentiality, related to HTML Surround.
https://exchange.xforce.ibmcloud.com/vulnerabilities/77040
http://www.securitytracker.com/id?1027266
http://www.securityfocus.com/bid/54563
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150