65 matches found
Oracle Business Intelligence - Path Traversal
Oracle Business Intelligence versions 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0 are vulnerable to path traversal in the BI Publisher formerly XML Publisher component of Oracle Fusion Middleware subcomponent: BI Publisher Security. id: CVE-2019-2588 info: name: Oracle Business Intelligence - Path...
Oracle EBS Under Fire as Cl0p Exploits CVE-2025-61882 in Real-World Attacks
CrowdStrike on Monday said it's attributing the exploitation of a recently disclosed security flaw in Oracle E-Business Suite with moderate confidence to a threat actor it tracks as Graceful Spider aka Cl0p, and that the first known exploitation occurred on August 9, 2025. The malicious activity...
EUVD-2019-12074
Malware in sbrugna...
EUVD-2018-14506
Malware in sbrugna...
EUVD-2019-12083
Malware in sbrugna...
EUVD-2013-5601
Malware in sbrugna...
CVE-2022-21521
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: XML Publisher. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...
CVE-2013-5765
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.51, 8.52, and 8.53 allows remote attackers to affect availability via vectors related to XML Publisher...
CVE-2022-21521
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: XML Publisher. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...
CVE-2022-21521
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: XML Publisher. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...
CVE-2022-21521
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: XML Publisher. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...
Code injection
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: XML Publisher. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...
CVE-2022-21521
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: XML Publisher. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...
CVE-2022-21521
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: XML Publisher. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...
CVE-2022-21521
CVE-2022-21521 affects Oracle PeopleSoft Enterprise PeopleTools (XML Publisher) with vulnerable versions 8.58 and 8.59. The issue allows a high-privilege attacker with network access over HTTP to compromise PeopleSoft Enterprise PeopleTools and potentially access all data. Public sources cite a ...
CVE-2019-2906
Vulnerability in the BI Publisher formerly XML Publisher product of Oracle Fusion Middleware component: Mobile Service. Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
Code injection
Vulnerability in the BI Publisher formerly XML Publisher product of Oracle Fusion Middleware component: BI Publisher Security. Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HT...
CVE-2019-2906
CVE-2019-2906 affects Oracle BI Publisher (Mobile Service) in Oracle Fusion Middleware. Affected versions include 11.1.1.9.0, 12.2.1.3.0, and 12.2.1.4.0. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise BI Publisher; successful attacks require user i...
CVE-2019-2771
Vulnerability in the BI Publisher formerly XML Publisher component of Oracle Fusion Middleware subcomponent: BI Publisher Security. Supported versions that are affected are 11.1.1.9.0 and 12.2.1.3.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
CVE-2019-2771
CVE-2019-2771 affects Oracle BI Publisher (XML Publisher) within Oracle Fusion Middleware, specifically the BI Publisher Security subcomponent. Affected versions listed are 11.1.1.9.0 and 12.2.1.3.0. The vulnerability is described as easily exploitable with network access via HTTP by a low-privil...