CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

NVD•added 2026/05/22 5:16 a.m.•6 views

CVE-2026-4070

The Alfie – Feed Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.1. This is due to missing nonce validation on the alfiemanage function which handles feed deletion via the 'delete' GET parameter. This makes it possible for...

4.3CVSS0.00006EPSS

Exploits0References5

CNNVD•added 2026/01/20 12:0 a.m.•1 views

Oracle Health Sciences Applications security vulnerabilities

Oracle Health Sciences Applications is a clinical research and development solution developed by Oracle Corporation for the healthcare industry in the United States. Version 7.0.1.0 of Oracle Life Sciences Central Designer in Oracle Health Sciences Applications contains a security vulnerability...

6.5CVSS7.1AI score0.00042EPSS

Exploits0References2

CNNVD•added 2026/01/20 12:0 a.m.•1 views

Oracle Hospitality Applications security vulnerabilities

Oracle Hospitality Applications is a set of business applications, servers, and storage solutions for hotel management developed by Oracle Corporation in the United States. This product offers features such as human resources cost management and tracking of services provided throughout customers’...

6.1CVSS7.1AI score0.00042EPSS

Exploits0References2

Positive Technologies•added 2026/01/07 12:0 a.m.•2 views

PT-2026-1591

Name of the Vulnerable Software and Affected Versions SVG Map Plugin for WordPress versions prior to 1.0.1 Description The software is susceptible to Cross-Site Request Forgery CSRF due to missing or incorrect nonce validation on multiple AJAX actions. Specifically, the AJAX actions ‘save data’,...

6.1CVSS6.4AI score0.00024EPSS

Exploits0References5

CNNVD•added 2025/10/21 12:0 a.m.•1 views

Oracle Database Server 安全漏洞

Oracle Database Server is a relational database management system from Oracle Corporation USA. The database management system provides data management, distributed processing and other functions. A security vulnerability exists in Unified Audit versions 23.4 through 23.9 of Oracle Database Server...

2.7CVSS7.1AI score0.00031EPSS

Exploits0References2

CNNVD•added 2025/10/21 12:0 a.m.•1 views

Oracle Financial Services Applications 安全漏洞

Oracle Financial Services Applications is a suite of financial services software from Oracle Corporation USA. The product includes core banking, online banking, and estate management. A security vulnerability exists in Oracle Financial Services Analytical Applications Infrastructure versions...

5.4CVSS7AI score0.00026EPSS

Exploits0References2

CNNVD•added 2025/10/21 12:0 a.m.•1 views

Oracle Java SE 安全漏洞

Oracle Java SE is an Oracle Corporation for developing and deploying Java applications for desktops, servers, and embedded devices and real-time environments. A security vulnerability exists in Oracle Java SE for Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise Edition, which...

3.7CVSS7AI score0.00027EPSS

Exploits0References1

CNNVD•added 2024/04/16 12:0 a.m.•2 views

Oracle E-Business Suite 的 Oracle Installed Base 安全漏洞

Oracle E-Business Suite and Oracle Installed Base are both products of Oracle Corporation.Oracle E-Business Suite is a fully integrated suite of global business management software. The software provides customer relationship management, service management, financial management and other...

6.1CVSS7.3AI score0.0033EPSS

Exploits0References2

CNNVD•added 2024/01/16 12:0 a.m.•1 views

Oracle Audit Vault and Database Firewall Security Vulnerabilities

Oracle Audit Vault and Database Firewall is a database security solution from Oracle Corporation. A security vulnerability exists in Oracle Audit Vault and Database Firewall versions 20.1 through 20.9. An attacker could exploit the vulnerability to perform unauthorized updates, insertions, or...

2.7CVSS6.6AI score0.00182EPSS

Exploits0References2

CNNVD•added 2021/01/19 12:0 a.m.•1 views

Oracle PeopleSoft PeopleSoft 组件安全漏洞

Oracle PeopleSoft Enterprise PeopleTools is a component of Oracle's tools and technology platform that supports the transformation of the way organizations manage, use, and maintain their PeopleSoft software. An information disclosure vulnerability exists in the Portal component of Oracle...

6.1CVSS5.8AI score0.008EPSS

Exploits0References2

CNVD•added 2020/10/23 12:0 a.m.•2 views

Unspecified Vulnerability in Oracle Hospitality Suite8

Oracle Hospitality Suite8 is a digital solution for hotel management from Oracle. A security vulnerability exists in Oracle Hospitality Suite8 WebConnect version 8.10.2, versions 8.11 through 8.15, which can be exploited by an attacker to cause unauthorized access to critical data or full access ...

7.1CVSS8.9AI score0.01648EPSS

Exploits0References1

CNVD•added 2020/07/16 12:0 a.m.•5 views

Unauthorized Access Vulnerability in Oracle BI Publisher (CNVD-2020-41109)

Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's Oracle business innovation platform for enterprise and cloud environments. The platform provides middleware, software collection and other functions. BI Publisher formerly known as XML Publisher is one of the reporting...

7.2CVSS9.2AI score0.00823EPSS

Exploits0References1

CNVD•added 2020/07/15 12:0 a.m.•1 views

Unspecified Vulnerability in Oracle Primavera Portfolio Management

Primavera Portfolio Management is a software solution for advising, planning, controlling and strategically analyzing your portfolio. A security vulnerability exists in the Investor Module component in Primavera Portfolio Management 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2.0, 19.0.0. An attacker could...

6.1CVSS9AI score0.00852EPSS

Exploits0References1

CNVD•added 2020/01/17 12:0 a.m.•1 views

Unspecified Vulnerability in Oracle PeopleSoft Enterprise PeopleTools (CNVD-2020-17124)

Oracle PeopleSoft Enterprise PeopleTools provides a comprehensive set of development tools that support the development and runtime of PeopleSoft applications. An unspecified vulnerability exists in Oracle PeopleSoft Enterprise PeopleTools, which could be exploited by an attacker to perform an...

6.1CVSS8.5AI score0.00935EPSS

Exploits0References1

CNVD•added 2019/04/17 12:0 a.m.•1 views

Oracle E-Business Suite CRM Technical Foundation Component Access Control Error Vulnerability (CNVD-2019-37396)

Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions. CRM Technical Foundation is one ...

4.7CVSS6.6AI score0.00827EPSS

Exploits0References1

CNVD•added 2019/01/16 12:0 a.m.•2 views

Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2019-28438)

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management and other functions. Email Center is one of the e-mail component. A securi...

4.7CVSS8.4AI score0.00702EPSS

Exploits0References1

CNVD•added 2019/01/16 12:0 a.m.•1 views

Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2019-28446)

Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. CRM Technical Foundation is one of the provision of Java-based infrastructure components for the development of e-business solutions. A security...

4.7CVSS8.4AI score0.00702EPSS

Exploits0References1

CNVD•added 2018/05/07 12:0 a.m.•2 views

Oracle Solaris Local Vulnerability (CNVD-2018-09103)

Oracle Sun Systems Products Suite is a suite of Sun systems products from Oracle Corporation, of which Solaris is a Unix-like operating system. A local security vulnerability exists in Oracle Solaris, where the 'Network Services Library' subcomponent is affected. An attacker could exploit the...

4.5CVSS6AI score0.00063EPSS

Exploits11References1

CNVD•added 2017/07/13 12:0 a.m.•1 views

Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2017-15383)

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Corporation, of which Oracle Partner Management is a partner management component. A security vulnerability exists in the User Interface subcomponent of the Oracle Partner...

4.7CVSS6.6AI score0.00642EPSS

Exploits0References1

CNVD•added 2017/01/20 12:0 a.m.•1 views

Oracle Siebel Remote Vulnerability (CNVD-2017-00909)

Oracle Siebel CRM is the United States Oracle Oracle company's set of customer relationship management solutions , which includes sales management , marketing management , customer service systems , call centers and other modules.Siebel UI Framework is one of the framework components based on the...

3.5CVSS6.6AI score0.00285EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by