Unspecified Vulnerability in Oracle Java SE and Java SE Embedded Components (CNVD-2016-09782)

Oracle Java SE and Java SE Embedded are both products of Oracle Corporation. Java SE Java Platform Standard Edition is used to develop and deploy Java applications for desktops, servers, as well as embedded devices and real-time environments; Java SE Embedded is a Java platform for the developmen...

Unspecified Vulnerability in Oracle MySQL Server Component (CNVD-2016-09802)

Oracle MySQL Server is an open source relational database management system from Oracle. This database system is characterized by high performance, low cost, good reliability and so on. A local security vulnerability exists in the Server: InnoDB subcomponent of the MySQL Server component in Oracl...

Unspecified Vulnerability in Oracle Financial Services Applications FLEXCUBE Universal Banking Component (CNVD-2016-09703)

Oracle FLEXCUBE Universal Banking is the United States Oracle Oracle company's set of real-time, online coverage of retail, group, investment banking, a comprehensive solution. The program supports multi-currency, multi-language and multi-entity operations. A remote security vulnerability exists ...

Unspecified Vulnerability in Oracle PeopleSoft Enterprise PeopleTools

Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle Corporation, and PeopleSoft Enterprise PeopleTools is one of the tools and technology components that transforms the way organizations manage, use, and maintain their PeopleSoft software. PeopleSoft...

Unspecified Vulnerability in Oracle PeopleSoft Enterprise PeopleTools (CNVD-2016-09928)

Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle Corporation, and PeopleSoft Enterprise PeopleTools is one of the tools and technology components that transforms the way organizations manage, use, and maintain their PeopleSoft software. PeopleSoft...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Advanced Pricing Component

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle, which provides customer relationship management, service management, financial management and other functions. The software provides customer relationship management,...

Unspecified Vulnerability in Oracle Enterprise Manager Grid Control Oracle Enterprise Manager Base Platform Component

Oracle Enterprise Manager Grid Control is a suite of systems management software from Oracle USA. The software provides centralized monitoring, lifecycle management, and other functions for the Oracle IT architecture.Oracle Enterprise Manager Base Platform is one of the system management platform...

Unspecified Vulnerability in Oracle Fusion Middleware Oracle Platform Security for Java Component (CNVD-2016-10060)

Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's business innovation platform for enterprise and cloud environments that provides middleware, software collections, and other capabilities.Oracle Platform Security for Java is one of the Java Platform Security for Java is one o...

Oracle MySQL Server 5.6 <= 5.6.30 / 5.7 <= 5.7.12 Security Update (cpuoct2016) - Windows

Oracle MySQL Server is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle MySQL Server 5.6 <= 5.6.30 / 5.7 <= 5.7.12 Security Update (cpuoct2016) - Linux

Oracle MySQL Server is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

IBM Kenexa LCMS Premier SQL Injection Vulnerability

IBM Kenexa LCMS Premier is a product of IBM Corporation, USA. IBM Kenexa LCMS Premier suffers from a SQL injection vulnerability that could be exploited by attackers to access or modify data...

Pivotal Spring Data JPA SQL Injection Vulnerability

Pivotal is a new company formed by EMC and VMware. A SQL injection vulnerability exists in Pivotal Spring Data JPA due to the program's inability to adequately clean user input data. An attacker could exploit the vulnerability to access and modify data...

CVE-2016-6027

The Configuration Manager in IBM Sterling Secure Proxy SSP 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1 does not enable the HSTS protection mechanism, which makes it easier for remote attackers to obtain sensitive information or modify data by leveraging use of HTTP...

Netbaran SQL Injection Vulnerability

Netbaran suffers from a SQL injection vulnerability that can be exploited by an attacker to compromise an application, access or modify data, or exploit a potential vulnerability in the underlying database...

Lokomedia CMS Remote SQL Injection Vulnerability

Lokomedia CMS is a content management system. Lokomedia CMS suffers from a remote SQL injection vulnerability. An attacker could use this vulnerability to take control of the application, access or modify data, or exploit potential vulnerabilities in the underlying database...

ADOdb SQL Injection Vulnerability

ADOdb is an intermediate component for PHP programs to access the database . A SQL injection vulnerability exists in version 5.x of ADOdb. An attacker could use this vulnerability to compromise an application, access or modify data, or exploit a potential vulnerability in the underlying database...

SAP Adaptive Server Enterprise SQL Injection Vulnerability (CNVD-2016-08065)

SAP Adaptive Server Enterprise Sybase ASE is a relational database management system from SAP. The system can be used in data-intensive environments and is characterized by high speed and stable performance. An SQL injection vulnerability exists in SAP Adaptive Server Enterprise. Because the...

SAP Adaptive Server Enterprise SQL Injection Vulnerability (CNVD-2016-08064)

SAP Adaptive Server Enterprise Sybase ASE is a relational database management system from SAP. The system can be used in data-intensive environments and is characterized by high speed and stable performance. An SQL injection vulnerability exists in SAP Adaptive Server Enterprise. Because the...

Exponent CMS SQL Injection Vulnerability (CNVD-2016-07937)

OIC Exponent CMS is a free, open source modular content management system CMS based on PHP from the American OIC Group of companies. The system supports direct editing in the page, and provides user management, site configuration, content editing and other functions. A SQL injection vulnerability...

Code injection

Multiple unspecified vulnerabilities in HPE Integrated Lights-Out 3 aka iLO 3 firmware before 1.88, Integrated Lights-Out 4 aka iLO 4 firmware before 2.44, and Integrated Lights-Out 4 aka iLO 4 mRCA firmware before 2.32 allow remote attackers to obtain sensitive information, modify data, or cause...