Authorization

Statutory Reporting for Insurance Companies in SAP ERP EA-FINSERV versions - 600, 603, 604, 605, 606, 616, 617, 618, 800 and S4CORE versions 101, 102, 103, 104 does not execute the required authorization checks for an authenticated user, allowing an attacker to view and tamper with certain...

CVE-2020-6268

CVE-2020-6268 affects SAP ERP EA-FINSERV versions 600–618, 800 and S4CORE versions 101–104. The issue is a Missing Authorization Check where an authenticated user can view and tamper with certain restricted data due to insufficient authorization validation. The CVE entry provides a high-level imp...

CVE-2020-6268

Statutory Reporting for Insurance Companies in SAP ERP EA-FINSERV versions - 600, 603, 604, 605, 606, 616, 617, 618, 800 and S4CORE versions 101, 102, 103, 104 does not execute the required authorization checks for an authenticated user, allowing an attacker to view and tamper with certain...

carinsurancequotesmi.info Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1180373 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

EyouCMS 1.4.6 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: EyouCMS 1.4.6 - Persistent Cross-Site Scripting Exploit Author: China Banking and Insurance Information Technology Management Co.,Ltd. Vendor Homepage: https://eyoucms.com Software Link:...

EyouCMS 1.4.6 Cross Site Scripting

Exploit Title: EyouCMS 1.4.6 - Persistent Cross-Site Scripting Date: 2020-05-28 Exploit Author: China Banking and Insurance Information Technology Management Co.,Ltd. Vendor Homepage: https://eyoucms.com Software Link: https://qiniu.eyoucms.com/EyouCMS-V1.4.6-UTF8-SP2.zip Version: EyouCMS V1.4.6...

The vulnerability of the User Interface sub-component of the Oracle Financial Services Deposit Insurance Calculations for Liquidity Risk Management banking analytics system’s simulation model applications allows attackers to create, delete, or modify access rights to protected information, or gain read-only access to data.

The vulnerability of the User Interface sub-component of the Oracle Financial Services Deposit Insurance Calculations component for liquidity risk management in the banking analytical system’s simulation model Oracle Financial Services Applications is related to the lack of protection for...

The vulnerability of the User Interface sub-component of the Oracle Insurance Accounting Analyzer component in the bank analytics system’s simulation model, Oracle Financial Services Applications, allows a perpetrator to create, delete, or modify access rights to protected information, or gain read-only access to data.

The vulnerability of the User Interface component of the Oracle Insurance Accounting Analyzer component in the bank analytics system’s simulation model application relates to the lack of protection for operational data. Exploiting this vulnerability allows an attacker to create, delete, or modify...

motorcycleinsuranceonline.co.za Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1170750 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

tableau.csaa-insurance.aaa.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1149151 Security Researcher OakdaleHutch Helped patch 26 vulnerabilities Received 1 Coordinated Disclosure badges , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting tableau.csaa-insurance.aaa.com website and its user...

Unspecified Vulnerability in Oracle Financial Services Applications Insurance Accounting Analyzer

Oracle Financial Services Applications is a suite of financial services software from Oracle USA. The product includes core banking, online banking and property management. An unspecified vulnerability exists in Oracle Financial Services Applications Insurance Accounting Analyzer, which can be...

Oracle Financial Services Applications Unspecified Vulnerability in Financial Services Deposit Insurance Calculations for Liquidity Risk Management

Oracle Financial Services Applications is a suite of financial services software from Oracle USA. The product includes core banking, online banking and property management. An unspecified vulnerability exists in Oracle Financial Services Applications Financial Services Deposit Insurance...

CVE-2020-2945

Vulnerability in the Oracle Financial Services Deposit Insurance Calculations for Liquidity Risk Management product of Oracle Financial Services Applications component: User Interfaces. Supported versions that are affected are 8.0.7 and 8.0.8. Easily exploitable vulnerability allows low privilege...

CVE-2020-2945

Vulnerability in the Oracle Financial Services Deposit Insurance Calculations for Liquidity Risk Management product of Oracle Financial Services Applications component: User Interfaces. Supported versions that are affected are 8.0.7 and 8.0.8. Easily exploitable vulnerability allows low privilege...

CVE-2020-2937

Vulnerability in the Oracle Insurance Accounting Analyzer product of Oracle Financial Services Applications component: User Interface. Supported versions that are affected are 8.0.6 - 8.0.9. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

Design/Logic Flaw

Vulnerability in the Oracle Insurance Accounting Analyzer product of Oracle Financial Services Applications component: User Interface. Supported versions that are affected are 8.0.6 - 8.0.9. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

Design/Logic Flaw

Vulnerability in the Oracle Financial Services Deposit Insurance Calculations for Liquidity Risk Management product of Oracle Financial Services Applications component: User Interfaces. Supported versions that are affected are 8.0.7 and 8.0.8. Easily exploitable vulnerability allows low privilege...

CVE-2020-2945

Vulnerability in the Oracle Financial Services Deposit Insurance Calculations for Liquidity Risk Management product of Oracle Financial Services Applications component: User Interfaces. Supported versions that are affected are 8.0.7 and 8.0.8. Easily exploitable vulnerability allows low privilege...

CVE-2020-2945

Vulnerability in the Oracle Financial Services Deposit Insurance Calculations for Liquidity Risk Management product of Oracle Financial Services Applications component: User Interfaces. Supported versions that are affected are 8.0.7 and 8.0.8. Easily exploitable vulnerability allows low privilege...

CVE-2020-2945

CVE-2020-2945 affects Oracle Financial Services Applications, Deposit Insurance Calculations for Liquidity Risk Management (component: User Interfaces) in versions 8.0.7 and 8.0.8. The vulnerability description indicates network access via HTTP from a low-privilege attacker can lead to unauthoriz...