8227 matches found
The vulnerability of the Oracle Fusion Middleware software platform allows a perpetrator to compromise the integrity, accessibility, and confidentiality of information.
The vulnerability of the Oracle Endeca Information Discovery Studio software component of the Oracle Fusion Middleware is related to errors in the code. Exploiting this vulnerability may allow an attacker, operating remotely, to compromise the integrity, accessibility, and confidentiality of...
The vulnerability of the Oracle Fusion Middleware software platform allows a perpetrator to compromise the integrity, accessibility, and confidentiality of information.
The vulnerability of the Oracle Data Integrator component of the Oracle Fusion Middleware software is related to errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the integrity, availability, and confidentiality of information...
Oracle WebLogic SSRF And XSS
CVE-2014-4210 Server Side Request Forgery in SearchPublicRegistries.jspAffected Software: Oracle Fusion Middleware 10.0.2, 10.3.6Oracle WebLogic web server is often both a externally accessible; and b permitted to invoke connections to internal hosts. The SearchPublicRegistries.jsp page can be...
Hackable HTTP proxy: Toxy
toxy is a fully programmatic and hackable HTTP proxy to simulate server failure scenarios and unexpected network conditions It was mainly designed for fuzzing/evil testing purposes, when toxy becomes particularly useful to cover fault tolerance and resiliency capabilities of a system, especially ...
DLA-301-1 python-django - security update
Bulletin has no description...
The vulnerability of the Oracle Fusion Middleware software platform allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Oracle Endeca Information Discovery Studio software component of the Oracle Fusion Middleware is related to errors in the code. Exploiting this vulnerability may allow an attacker, operating remotely, to compromise the confidentiality, integrity, and accessibility of the...
keystonemiddleware/keystoneclient: S3Token TLS cert verification option not honored
It was discovered that some items in the S3Token paste configuration as used by python-keystonemiddleware formerly python-keystoneclient were incorrectly evaluated as strings, an issue similar to CVE-2014-7144. If the "insecure" option were set to "false", the option would be evaluated as true,...
DEBIAN-CVE-2015-5963
contrib.sessions.middleware.SessionMiddleware in Django 1.8.x before 1.8.4, 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions allows remote attackers to cause a denial of service session store consumption or session record removal via a large number of requests to...
PYSEC-2015-22
contrib.sessions.middleware.SessionMiddleware in Django 1.8.x before 1.8.4, 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions allows remote attackers to cause a denial of service session store consumption or session record removal via a large number of requests to...
CVE-2015-5963
contrib.sessions.middleware.SessionMiddleware in Django 1.8.x before 1.8.4, 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions allows remote attackers to cause a denial of service session store consumption or session record removal via a large number of requests to...
CVE-2015-5963
contrib.sessions.middleware.SessionMiddleware in Django 1.8.x before 1.8.4, 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions allows remote attackers to cause a denial of service session store consumption or session record removal via a large number of requests to...
UBUNTU-CVE-2015-5963
contrib.sessions.middleware.SessionMiddleware in Django 1.8.x before 1.8.4, 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions allows remote attackers to cause a denial of service session store consumption or session record removal via a large number of requests to...
Unspecified Vulnerability in Oracle Fusion Oracle Endeca Information Discovery Studio Component
Oracle Fusion Middleware is a comprehensive middleware portfolio comprised of Oracle's industry-leading SOA and middleware products.Oracle Endeca Information Discovery is an enterprise data mining platform for advanced, intuitive exploration and analysis of a wide range of data. A security...
OSF for Drupal - Critical - Multiple vulnerabilities - SA-CONTRIB-2015-134
The Open Semantic Framework OSF for Drupal is a middleware layer that allows structured data RDF and associated vocabularies ontologies to "drive" tailored tools and data displays within Drupal. The module is vulnerable to reflected Cross Site Scripting XSS because it did not sufficiently filter...
Unspecified Vulnerability in Oracle Fusion Oracle JDeveloper Component
Oracle Fusion Middleware is a suite of application servers for cloud and traditional environments. A security vulnerability exists in the Oracle Fusion Oracle JDeveloper component that can be exploited by remote attackers to impact system availability...
Unspecified Vulnerability in Oracle Fusion Oracle Endeca Information Discovery Studio Component (CNVD-2015-04747)
Oracle Fusion Middleware is a suite of application servers for cloud and traditional environments. A security vulnerability exists in the Oracle Fusion Middleware Oracle Endeca Information Discovery Studio component that can be exploited by remote attackers to compromise system integrity,...
Unspecified Vulnerability in Oracle Fusion Oracle Data Integrator Component (CNVD-2015-04753)
Oracle Fusion Middleware is a suite of application servers for cloud and traditional environments. A security vulnerability exists in the Oracle Fusion Oracle Data Integrator component that can be exploited by remote attackers to compromise system availability, integrity, and confidentiality...
Unspecified Vulnerability in Oracle Fusion Oracle Endeca Information Discovery Studio Component (CNVD-2015-04743)
Oracle Fusion Middleware is a suite of application servers for cloud and traditional environments. A security vulnerability exists in the Oracle Fusion Middleware Oracle Endeca Information Discovery Studio component that can be exploited by remote attackers to compromise system integrity,...
Unspecified Vulnerability in Oracle Fusion Oracle Endeca Information Discovery Studio Component (CNVD-2015-04744)
Oracle Fusion Middleware is a suite of application servers for cloud and traditional environments. A security vulnerability exists in the Oracle Fusion Middleware Oracle Endeca Information Discovery Studio component that can be exploited by remote attackers to compromise system integrity,...
Unspecified Vulnerability in Oracle Fusion Oracle Endeca Information Discovery Studio Component (CNVD-2015-04746)
Oracle Fusion Middleware is a suite of application servers for cloud and traditional environments. A security vulnerability exists in the Oracle Fusion Middleware Oracle Endeca Information Discovery Studio component that can be exploited by remote attackers to compromise system integrity,...