Oracle Fusion Middleware Oracle GlassFish Server Component Vulnerability

Oracle Fusion Middleware Oracle Fusion Middleware is the United States Oracle Oracle company's set of business innovation platform for enterprise and cloud environments. The platform provides middleware, software collection, etc. Oracle GlassFish Server is one of the components that can realize t...

Oracle HTTP Server A vulnerability exists in the HTTP Server component.

Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's business innovation platform for enterprise and cloud environments, which provides features such as middleware, Oracle HTTP Server, a component based on Apache HTTP Server and used to create web servers. The platform provides...

Vulnerability in Oracle Fusion Middleware WebCenter Sites Component

Oracle Fusion Middleware is a suite of business innovation platforms for enterprise and cloud environments from Oracle Corporation. Oracle WebCenter Sites is a web experience management component that enables marketers and business users to create and manage interactive social online experiences ...

PowerShell Incident Response: Psrecon

Psrecon is an open source script that you can use to gather data from a remote Windows host using PowerShell v2 or later, organizes the data into folders, hashes all extracted data, hashes PowerShell and various system properties, and sends the data off to the security team. The data can be pushe...

Web Reference Database SQL Injection Vulnerability

Web Reference Database is a web-based multi-user interface product that provides search tools and automatic indexing for managing scientific literature. A security vulnerability in the Web Reference Database install.php script handling the 'defaultCharacterSet' parameter allows remote attackers t...

The vulnerability of Safari browser and iOS operating system allows attackers to gain access to protected information.

The vulnerability of the Content Security Policy implementation in the WebKit component of the Safari browser and the iOS operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, acting remotely, to gain access to protected...

UBUNTU-CVE-2012-2150

xfsmetadump in xfsprogs before 3.2.4 does not properly obfuscate file data, which allows remote attackers to obtain sensitive information by reading a generated image...

The vulnerability of the MySQL database management system allows a hacker to compromise the accessibility of data.

Vulnerability of the Server sub-component: The RBR component of the MySQL database management system is vulnerable due to code errors. Exploiting this vulnerability allows a malicious actor to compromise the accessibility of data remotely...

Unspecified Vulnerability in Oracle Virtualization Sun Ray Software Component

Oracle Virtualization Sun Ray Software is a suite of software from Oracle that provides a rich virtual desktop experience for Sun Ray clients, PCs and portables. A security vulnerability exists in the Web Console subcomponent of the Sun Ray Software component of Oracle Virtualization versions pri...

The vulnerability of the Firefox ESR browser, which allows a hacker to read data from uninitialized memory areas

The vulnerability of the YCbCrImageDataDeserializer::ToDataSourceSurface function in Firefox ESR browsers is related to code errors. Exploiting this vulnerability may allow an attacker to read data from uninitialized memory areas remotely...

Oracle Virtualization Secure Global Desktop Component Vulnerability

Oracle Secure Global Desktop SGD is a secure remote access solution for accessing enterprise-class applications and desktop environments running on Microsoft Windows, Linux, Solaris and mainframe hosted in the cloud.Oracle Secure Global Desktop works on a variety of popular client devices,...

Unspecified Vulnerability in Oracle Supply Chain Oracle Transportation Management Component

Oracle Transportation Management is a transportation management system developed by Oracle Corporation. A security vulnerability exists in the Oracle Supply Chain Oracle Transportation Management component that can be exploited by remote attackers to compromise system confidentiality...

DEBIAN-CVE-2015-1158

The addjob function in scheduler/ipp.c in cupsd in CUPS before 2.0.3 performs incorrect free operations for multiple-value job-originating-host-name attributes, which allows remote attackers to trigger data corruption for reference-counted strings via a crafted 1 IPPCREATEJOB or 2 IPPPRINTJOB...

GarrettCom Magnum 6K and 10K Switches Information Disclosure Vulnerability

GarrettCom Magnum 6K and 10K Switches are managed switches from GarrettCom USA. An information disclosure vulnerability exists in GarrettCom Magnum 6K and 10K Switches, which allows remote attackers to exploit the vulnerability to gain unauthorized access to the devices via sensitive information...

Persian Car CMS SQL Injection Vulnerability

Persian Car CMS is a content management system. Persian Car CMS fails to properly handle the 'catid' parameter in URLs, allowing remote attackers to exploit the vulnerability by submitting specially crafted SQL queries to manipulate or obtain database data...

Multiple Directory Traversal Vulnerability in Arcserve Unified Data Protection

Arcserve UDP Unified Data Protection is a set of unified data protection solutions from the U.S. company Arcserve. The solution provides backup and recovery of all virtual and physical environments, global deduplication and other functions. Multiple directory traversal vulnerabilities exist in th...

Cisco Unified Web and E-Mail Interaction Manager SQL Injection Vulnerability

Cisco Unified Web and E-mail Interaction Manager are both products in the Customer Collaboration Contact Center of the American Cisco Cisco company. A SQL injection vulnerability exists in Cisco Unified Web and E-Mail Interaction Manager, which could be exploited by a remote attacker to submit a...

Brainworks Software XpanceNET /index.php/request_passwordChange SQL Injection Vulnerability

Brainworks Software XpanceNET is a WEB-based application. Brainworks Software XpanceNET /index.php/requestpasswordChange handles a SQL injection vulnerability in the UserID parameter, which allows remote attackers to exploit the vulnerability by submitting a specially crafted SQL query to...

Novell ZENworks 'GetReRequestData' Method SQL Injection Vulnerability

Novell ZENworks is a suite of software that supports automated IT management and business process management across resources within an organization. A SQL injection vulnerability in the 'GetReRequestData' method of the GetStoredResult class in Novell ZENworks allows remote attackers to submit...

Novell ZENworks 'FileViewer' Class Information Disclosure Vulnerability

Novell ZENworks is a suite of software that supports automated IT management and business process management across resources within an organization. Novell ZENworks' FileViewer class fails to adequately filter the 'filename' variable, allowing remote attackers to read arbitrary files and obtain...