OmniAuth Request Phase Cross-Site Request Forgery Vulnerability

OmniAuth is a set of authentication system implemented using Rack middleware. OmniAuth suffers from a cross-site request forgery vulnerability. As the program fails to properly validate HTTP requests. A remote attacker can exploit this vulnerability to perform unauthorized operations and gain...

The vulnerability of the Oracle Fusion Middleware software platform allows a remote attacker to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of the Oracle WebLogic Server component of the Oracle Fusion Middleware software platform allows a malicious actor, who operates remotely and has completed the authentication process, to compromise the confidentiality, integrity, and accessibility of data by using the...

The vulnerability of the Oracle Fusion Middleware software platform allows a remote attacker to compromise data integrity.

The vulnerability of the Oracle WebLogic Server component of the Oracle Fusion Middleware software allows a malicious actor to compromise data integrity by using the Console subcomponent...

The vulnerability of the Oracle Fusion Middleware software allows a remote attacker to replace the RSA signature.

The vulnerability of the Oracle Fusion Middleware software exists in the NSS Network Security Services library of Mozilla, which is used by the Oracle iPlanet Web Server. This vulnerability stems from incorrect processing of ASN.1 values in H.509 certificates. Exploiting this vulnerability could...

Oracle Fusion Middleware Outside In Technology Component Denial of Service Vulnerability

Oracle Outside In Technology is the United States Oracle Oracle company's set of software development kit SDK, which provides developers with a set of access, conversion and control of a variety of unstructured format files, a comprehensive solution. A security vulnerability exists in the Outside...

Oracle Fusion Middleware Outside In Technology Component Denial of Service Vulnerability

Oracle Fusion Middleware is a comprehensive middleware family. An unspecified security vulnerability exists in the Outside In Filters subcomponent of the Oracle Outside In Technology component of Oracle Fusion Middleware, which can be exploited by a local attacker to conduct a denial of service...

Unspecified Vulnerability in Oracle Fusion Middleware Access Manager Component

Oracle Fusion Middleware is a suite of application servers for cloud and traditional environments. A security vulnerability exists in the Authentication Engine subcomponent of the Oracle Access Manager component of Oracle Fusion Middleware, which can be exploited by remote attackers to manipulate...

Unspecified Vulnerability in Oracle Fusion Middleware WebLogic Server Component (CNVD-2015-02590)

Oracle Fusion Middleware is a suite of application servers for cloud and traditional environments. A security vulnerability exists in the WLS-WebServices subcomponent of the Oracle WebLogic Server component of Oracle Fusion Middleware, which can be exploited by remote attackers to manipulate data...

CVE-2015-1852

The s3token middleware in OpenStack keystonemiddleware before 1.6.0 and python-keystoneclient before 1.4.0 disables certification verification when the "insecure" option is set in a paste configuration paste.ini file regardless of the value, which allows remote attackers to conduct...

PYSEC-2015-30

The s3token middleware in OpenStack keystonemiddleware before 1.6.0 and python-keystoneclient before 1.4.0 disables certification verification when the "insecure" option is set in a paste configuration paste.ini file regardless of the value, which allows remote attackers to conduct...

Unspecified Vulnerability in Oracle Fusion Middleware WebLogic Server Component

Oracle WebLogic Server is an Oracle Oracle application server for cloud and traditional environments, which provides a modern lightweight development platform that supports the entire lifecycle management of applications from development to production and simplifies application deployment and...

Unspecified Vulnerability in Oracle Fusion Middleware OpenSSO Component

Oracle OpenSSO is the United States Oracle Oracle a single sign-on SSO open source implementation , it is deployed in a variety of different Web or application servers on the Web application to provide centralized authentication capabilities . A security vulnerability exists in the OpenSSO Web...

Unspecified Vulnerability in Oracle Fusion Middleware WebCenter Portal Component (CNVD-2015-02539)

Oracle Fusion Middleware is Oracle's suite of business innovation platforms for enterprise and cloud environments, of which Oracle WebCenter Portal is a component that seamlessly integrates portals with enterprise applications. A security vulnerability exists in the WebCenter Spaces Application...

Unspecified Vulnerability in Oracle Fusion Middleware WebCenter Portal Component (CNVD-2015-02540)

Oracle Fusion Middleware is Oracle's suite of business innovation platforms for enterprise and cloud environments, of which Oracle WebCenter Portal is a component that seamlessly integrates portals with enterprise applications. A security vulnerability exists in the Portlet Services subcomponent ...

CVE-2015-0493

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.1, 8.5.0, and 8.5.1 allows local users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2015-0474...

CVE-2015-0482

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 12.1.2.0 and 12.1.3.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to WLS-WebServices...

CVE-2015-0474

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.1, 8.5.0, and 8.5.1 allows local users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2015-0493...

CVE-2015-0461

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5 and 11.1.1.7 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Authentication Engine...

CVE-2015-0456

Unspecified vulnerability in the Oracle WebCenter Portal component in Oracle Fusion Middleware 11.1.1.8.0 allows remote attackers to affect integrity via unknown vectors related to Portlet Services...

CVE-2015-0451

Unspecified vulnerability in the Oracle OpenSSO component in Oracle Fusion Middleware 3.0-04 allows remote authenticated users to affect confidentiality via vectors related to OpenSSO Web Agents...