Lucene search
K

182 matches found

CVE
CVE
added 2018/01/18 2:0 a.m.45 views

CVE-2018-2658

CVE-2018-2658 affects Oracle JD Edwards EnterpriseOne Tools (Web Runtime SEC subcomponent) in version 9.2. The vulnerability allows unauthenticated network access via HTTP, with user interaction required, to potentially read and modify JD Edwards EnterpriseOne Tools data and related contents. The...

6.1CVSS5.5AI score0.00824EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2018/01/18 2:0 a.m.4 views

CVE-2018-2659

Vulnerability in the JD Edwards EnterpriseOne Tools component of Oracle JD Edwards Products subcomponent: Web Runtime SEC. The supported version that is affected is 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

5.5AI score0.00824EPSS
Exploits0References2
CNVD
CNVD
added 2017/07/04 12:0 a.m.2 views

Oracle JD Edwards EnterpriseOne Tools Remote Vulnerability

Oracle JD Edwards Products is a fully integrated suite of Enterprise Resource Planning ERP applications from Oracle, providing financial management, project management, and asset lifecycle management applications.JD Edwards EnterpriseOne Tools is one of the tool components. A security vulnerabili...

6.5CVSS6.7AI score0.01371EPSS
Exploits0References1
OSV
OSV
added 2017/04/24 7:59 p.m.4 views

CVE-2017-3517

Vulnerability in the JD Edwards EnterpriseOne Tools component of Oracle JD Edwards Products subcomponent: Web Runtime SEC. The supported version that is affected is 9.2. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

6.5CVSS5.8AI score
Exploits0References2
Prion
Prion
added 2017/04/24 7:59 p.m.17 views

Code injection

Vulnerability in the JD Edwards EnterpriseOne Tools component of Oracle JD Edwards Products subcomponent: Web Runtime SEC. The supported version that is affected is 9.2. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

6.4CVSS5.3AI score0.01371EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2015/04/17 12:0 a.m.3 views

Oracle JD Edwards EnterpriseOne Technology Remote Vulnerability

Oracle JD Edwards EnterpriseOne is a fully integrated suite of enterprise resource planning management software that provides application modules for financial management, project management and asset lifecycle management. A security vulnerability exists in the Web Runtime Security subcomponent o...

4CVSS6.7AI score0.01422EPSS
Exploits0References1
NVD
NVD
added 2015/04/16 4:59 p.m.19 views

CVE-2015-0475

Unspecified vulnerability in the JD Edwards EnterpriseOne Technology component in Oracle JD Edwards Products 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Web Runtime Security...

4CVSS5.2AI score0.01422EPSS
Exploits0References2
Prion
Prion
added 2015/04/16 4:59 p.m.14 views

Design/Logic Flaw

Unspecified vulnerability in the JD Edwards EnterpriseOne Technology component in Oracle JD Edwards Products 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Web Runtime Security...

4CVSS5.5AI score0.01422EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/04/16 4:0 p.m.20 views

CVE-2015-0475

Unspecified vulnerability in the JD Edwards EnterpriseOne Technology component in Oracle JD Edwards Products 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Web Runtime Security...

5.2AI score0.01422EPSS
Exploits0References2
CVE
CVE
added 2015/04/16 4:0 p.m.44 views

CVE-2015-0475

CVE-2015-0475 bases on an Oracle JD Edwards EnterpriseOne Technology vulnerability in the Web Runtime Security subcomponent of JD Edwards Products 9.1. CNVD-2015-02642 describes a remote-authenticated path that can read data and compromise confidentiality via this subcomponent. NVD notes an unspe...

4CVSS5.3AI score0.01422EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2011/04/20 10:55 a.m.24 views

CVE-2011-0836

Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC...

3.5CVSS5.7AI score0.03403EPSS
Exploits1References1
Prion
Prion
added 2011/04/20 10:55 a.m.15 views

Design/Logic Flaw

Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC...

3.5CVSS6AI score0.03403EPSS
Exploits1References1Affected Software6
Cvelist
Cvelist
added 2011/04/20 10:0 a.m.29 views

CVE-2011-0836

Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC...

5.7AI score0.03403EPSS
Exploits1References1
exploitpack
exploitpack
added 2011/04/19 12:0 a.m.14 views

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeE1Menu_OCL.mafService?e1.namespace Cross-Site Scripting

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeE1MenuOCL.mafService?e1.namespace Cross-Site Scripting source: https://www.securityfocus.com/bid/47479/info Oracle JD Edwards EnterpriseOne is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these...

Exploits0
exploitpack
exploitpack
added 2011/04/19 12:0 a.m.61 views

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeJASMafletMafBrowserClose.mafService?jdemafjasLinkTarget Cross-Site Scripting

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeJASMafletMafBrowserClose.mafService?jdemafjasLinkTarget Cross-Site Scripting source: https://www.securityfocus.com/bid/47479/info Oracle JD Edwards EnterpriseOne is prone to multiple cross-site scripting vulnerabilities. An attacker...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2011/04/19 12:0 a.m.38 views

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeMafletClose.mafService?RENDER_MAFLET Cross-Site Scripting

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeMafletClose.mafService?RENDERMAFLET Cross-Site Scripting source: https://www.securityfocus.com/bid/47479/info Oracle JD Edwards EnterpriseOne is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these...

Exploits0
exploitpack
exploitpack
added 2011/04/19 12:0 a.m.29 views

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeE1Menu_Menu.mafService?e1.namespace Cross-Site Scripting

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeE1MenuMenu.mafService?e1.namespace Cross-Site Scripting source: https://www.securityfocus.com/bid/47479/info Oracle JD Edwards EnterpriseOne is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these...

Exploits0
Exploit DB
Exploit DB
added 2011/04/19 12:0 a.m.82 views

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - '/jde/JASMafletMafBrowserClose.mafService?jdemafjasLinkTarget' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47479/info Oracle JD Edwards EnterpriseOne is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This m...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/04/19 12:0 a.m.60 views

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - '/jde/E1Menu_OCL.mafService?e1.namespace' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47479/info Oracle JD Edwards EnterpriseOne is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This m...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/04/19 12:0 a.m.85 views

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - '/jde/MafletClose.mafService?RENDER_MAFLET' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47479/info Oracle JD Edwards EnterpriseOne is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This m...

7.4AI score
Exploits0
Rows per page
Query Builder