Lucene search
K

16 matches found

Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.17 views

PT-2026-50041

Name of the Vulnerable Software and Affected Versions Oracle E-Business Suite Oracle Cost Management versions 12.2.3 through 12.2.15 Description An issue exists in the Cost Planning component of the Oracle Cost Management product. A high privileged attacker with network access via HTTP can exploi...

7.2CVSS5.8AI score0.00453EPSS
Exploits0References3
NVD
NVD
added 2026/05/28 9:16 p.m.21 views

CVE-2026-46837

Vulnerability in the Oracle Flow Manufacturing product of Oracle E-Business Suite component: Security. Supported versions that are affected are 12.2.9-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via SQL to compromise Oracle Flow Manufacturing...

8.8CVSS0.00268EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/14 4:48 p.m.7 views

CVE-2026-44516

Valtimo is an open-source business process automation platform. From 12.4.0 to 12.33.0 and 13.26.0, the LoggingRestClientCustomizer in the web module automatically intercepts all outgoing HTTP calls made via Spring's RestClient and logs the full request body, response body, and response headers...

7.6CVSS5.8AI score0.002EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologies
added 2025/10/23 12:0 a.m.8 views

PT-2025-43535

Name of the Vulnerable Software and Affected Versions Piranha CMS versions 12.0 and 12.1 Description A stored cross-site scripting XSS issue exists in the /manager/pages component of Piranha CMS. This allows attackers to execute arbitrary web scripts or HTML by creating a page and injecting a...

6.1CVSS5.5AI score0.00263EPSS
Exploits1References16
CNNVD
CNNVD
added 2025/02/11 12:0 a.m.4 views

Misskey 安全漏洞

Misskey is a perpetually free open source syndicated social media platform from Misskey Open Source. A security vulnerability exists in Misskey version 12.109.0 through versions prior to 2025.2.0-alpha.0, which stems from a lack of CSRF protection and proper security attributes, and may be...

8.2CVSS6.5AI score0.00132EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/11/07 12:0 a.m.5 views

Veeam ONE Cross-Site Scripting Vulnerability

Veeam ONE is a suite of IT monitoring and reporting tools from Veeam USA. The product supports features such as backup monitoring, operational status monitoring of virtual and physical environments. A cross-site scripting vulnerability exists in Veeam ONE versions 11, 11a, and 12 that originates...

4.3CVSS5.8AI score0.1232EPSS
Exploits0References2
OSV
OSV
added 2023/07/18 9:15 p.m.2 views

CVE-2023-22042

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.2.3-12.3.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Applications...

6.1CVSS7.3AI score0.00363EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/01/19 12:15 p.m.5 views

CVE-2022-21393

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM...

4.3CVSS6.6AI score0.00804EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/09/14 11:15 a.m.5 views

CVE-2021-40354

A vulnerability has been identified in Teamcenter V12.4 All versions V12.4.0.8, Teamcenter V13.0 All versions V13.0.0.7, Teamcenter V13.1 All versions V13.1.0.5, Teamcenter V13.2 All versions 13.2.0.2. The "surrogate" functionality on the user profile of the application does not perform sufficien...

7.1CVSS5.7AI score0.00585EPSS
Exploits0References2
OSV
OSV
added 2021/04/22 10:15 p.m.5 views

CVE-2021-2267

Vulnerability in the Oracle Labor Distribution product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Labor Distribution...

8.1CVSS6.8AI score0.00987EPSS
Exploits0References1
OSV
OSV
added 2021/04/22 10:15 p.m.3 views

CVE-2021-2183

Vulnerability in the Oracle iStore product of Oracle E-Business Suite component: Shopping Cart. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iStore...

8.2CVSS6.8AI score0.00933EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/04/20 12:0 a.m.1 views

PT-2021-2855 · Oracle · Oracle Database

Name of the Vulnerable Software and Affected Versions: Oracle Database - Enterprise Edition versions 12.1.0.2 through 19c Description: The issue is related to inadequate access control in the Oracle Database - Enterprise Edition component of Oracle Database Server. It allows a high-privileged...

2.3CVSS3.8AI score0.00643EPSS
Exploits2References6
OSV
OSV
added 2020/01/15 5:15 p.m.8 views

CVE-2020-2700

Vulnerability in the Oracle FLEXCUBE Universal Banking product of Oracle Financial Services Applications component: Infrastructure. Supported versions that are affected are 12.0.1-12.4.0 and 14.0.0-14.3.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTT...

4.3CVSS6.1AI score0.0094EPSS
Exploits0References1
OSV
OSV
added 2020/01/15 5:15 p.m.8 views

CVE-2020-2653

Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite component: Preferences. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle CR...

8.2CVSS7.3AI score0.01275EPSS
Exploits0References1
OSV
OSV
added 2019/04/23 7:32 p.m.3 views

CVE-2019-2642

Vulnerability in the Oracle Trade Management component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with...

8.2CVSS5.8AI score0.01287EPSS
Exploits0References1
OSV
OSV
added 2017/08/08 3:29 p.m.3 views

CVE-2017-10180

Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite subcomponent: CMRO. Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

8.2CVSS5.8AI score0.01929EPSS
Exploits0References3
Rows per page
Query Builder