The vulnerability of the Worklist sub-component of the Oracle Workflow component in the Oracle E-Business Suite automation system allows a perpetrator to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Worklist sub-component of the Oracle Workflow component in the Oracle E-Business Suite automation system is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker operating remotely to modify, add, or delete data, or gain...

Missing HTTP Security Headers in NetApp OnCommand Workflow Automation - US

Lenovo Security Advisory: LEN-29480 Potential Impact: Information Disclosure Severity: Medium Scope of Impact: Industry-wide CVE Identifier: CVE-2019-5503 Summary Description: NetApp reported that OnCommand Workflow Automation versions prior to 5.0 shipped without certain HTTP Security headers...

CVE-2013-1930

MantisBT 1.2.12 before 1.2.15 allows authenticated users to by the workflow restriction and close issues...

Design/Logic Flaw

MantisBT 1.2.12 before 1.2.15 allows authenticated users to by the workflow restriction and close issues...

CVE-2013-1930

MantisBT 1.2.12 before 1.2.15 allows authenticated users to by the workflow restriction and close issues...

CVE-2013-1930

CVE-2013-1930 affects MantisBT 1.2.12 prior to 1.2.15, enabling authenticated users to bypass the workflow restriction and close issues. Root cause details are not provided beyond the bypass of workflow checks. Impact is limited to issue state manipulation by authenticated users; no exploitation ...

CVE-2013-1930

MantisBT 1.2.12 before 1.2.15 allows authenticated users to by the workflow restriction and close issues...

Oracle E-Business Suite Multiple Vulnerabilities (Oct 2019 CPU)

The version of Oracle E-Business installed on the remote host is missing the October 2019 Oracle Critical Patch Update CPU. It is, as noted in the October 2019 Critical Patch Update advisory, affected by flaws in the following components : - Oracle Advanced Outbound Telephony - Oracle Application...

CVE-2019-2925

Vulnerability in the Oracle Workflow product of Oracle E-Business Suite component: Worklist. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Workflow. Successful...

Design/Logic Flaw

Vulnerability in the Oracle Workflow product of Oracle E-Business Suite component: Worklist. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Workflow. Successful...

CVE-2019-2925

Vulnerability in the Oracle Workflow product of Oracle E-Business Suite component: Worklist. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Workflow. Successful...

CVE-2019-2925

CVE-2019-2925 affects Oracle E-Business Suite, Oracle Workflow, Worklist component. Affected versions: 12.1.3 and 12.2.3–12.2.8. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Oracle Workflow, with exploitation requiring human interaction. Conseque...

CVE-2019-2925

Vulnerability in the Oracle Workflow product of Oracle E-Business Suite component: Worklist. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Workflow. Successful...

jenkins-plugin-workflow-remote-loader: Unsafe Script Security whitelist entry in Pipeline Remote Loader Plugin (SECURITY-921)

A flaw was found in the Jenkins Workflow Remote Loader plugin. An unsafe whitelist entry was made that allowed invoking arbitrary methods and bypassing sandbox protection. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

Unspecified Vulnerability in Oracle E-Business Suite Workflow

Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions. Workflow E-Business Suite is one...

Oracle E-Business Suite CVE-2019-2925 Remote Security Vulnerability

Description Oracle E-Business Suite is prone to a remote vulnerability in Oracle Workflow. The vulnerability can be exploited over the 'HTTP' protocol. The 'Worklist' component is affected. This vulnerability affects the following supported versions: 2.1.3, 12.2.3 through 12.2.8 Technologies...

Access Revocation: A Content Provider's Tool to Block Pirates in Real time

Akamai Announces New Capability to Allows Content Providers to Shut Down Sources of Piracy ... The Growth of Global Online Video Consumption and Piracy Media and entertainment companies, including Content owners and Over-the-top OTT service providers are living in an era that provides them an...

Faster On-Boarding for Performance and Security Products

As part of our October release, we are making our onboarding experience much faster and simpler. These benefits are extended to new customers looking to onboard and protect new hostnames on Akamai - as well as existing customers looking to spin up, test, and protect new functionality within their...

Enhanced API Scanning with Postman Support in Qualys WAS

Due to the fast-growing usage of REST APIs, having a way to test them for vulnerabilities in an automated, reliable way is more important than ever. Automated testing of APIs is a little trickier than for web applications. You can't simply enter a starting URL for the scanner and click "Go"...

Partner Perspectives: Disrupt Advanced Threats with Blumira + Carbon Black

Matt Warner is the CTO of Blumira. Modern security challenges are not easy to fix or even identify, and despite misleading advertising from some vendors, there is no one-size-fits-all solution. Blumira frequently observes large visibility gaps in existing security implementations, allowing obviou...