Oracle WebLogic Server 12.2.1.0 Remote Code Execution

Exploit Title: Oracle WebLogic Server 12.2.1.0 - RCE Unauthenticated Google Dork: inurl:\"/console/login/LoginForm.jsp\" Date: 25/1/2021 Exploit Author: CHackA0101 Vendor Homepage: https://www.oracle.com/security-alerts/cpuoct2020.html Version: Oracle WebLogic Server, version 12.2.1.0 Tested...

Oracle Business Intelligence Publisher Information Disclosure (Oct 2016 CPU)

The version of Oracle Business Intelligence Publisher running on the remote host is 11.1.1.7.x prior to 11.1.1.7.160719, 11.1.1.9.x prior to 11.1.1.9.161018, or 12.2.1.0.x prior to 12.2.1.0.161018. It is, therefore, affected by an unspecified vulnerability in the BI Publisher component in Oracle...

CVE-2017-3625

Vulnerability in the Oracle WebCenter Content component of Oracle Fusion Middleware subcomponent: Content Server. Supported versions that are affected are 11.1.1.7, 11.1.1.9, 12.2.1.0, 12.2.1.1 and 12.2.1.2. Easily "exploitable" vulnerability allows unauthenticated attacker with network access vi...

CVE-2016-5601

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 12.1.3.0, 12.2.1.0, and 12.2.1.1 allows local users to affect confidentiality and integrity via vectors related to CIE Related Components...

CVE-2016-3586

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS Core Components, a different vulnerability than CVE-2016-3510...

CVE-2016-3502

Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 11.1.1.8 and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...

CVE-2016-3499

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 12.1.3.0 and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Web Container...

CVE-2016-3487

Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 11.1.1.8, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

Unspecified Vulnerability in Oracle Fusion Middleware TopLink

Oracle Fusion Middleware is a comprehensive middleware portfolio of SOA and middleware products. Oracle Fusion Middleware versions 12.1.3.0, 12.2.1.0, 12.2.1.1, a security vulnerability exists in the TopLink component, which can be exploited by a remote attacker to compromise confidentiality,...

Unspecified Vulnerability in Oracle Fusion Middleware WebLogic Server Component (CNVD-2016-05193)

Oracle Fusion Middleware is a comprehensive middleware portfolio of SOA and middleware products. A security vulnerability exists in the WebLogic Server component of Oracle Fusion Middleware versions 10.3.6.0, 12.1.3.0, 12.2.1.0, which can be exploited by remote attackers to compromise...

Unspecified Vulnerability in Oracle Fusion Middleware Oracle WebCenter Sites Component

Oracle Fusion Middleware is a suite of business innovation platforms for enterprise and cloud environments from Oracle Corporation. Oracle WebCenter Sites is a web experience management component that enables marketers and business users to create and manage interactive social online experiences ...