27 matches found
EUVD-2016-0544
Malware in sbrugna...
CVE-2016-0509
Unspecified vulnerability in the Oracle Internet Expenses component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to AP Web Utilities...
CVE-2016-0509
Unspecified vulnerability in the Oracle Internet Expenses component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to AP Web Utilities...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Internet Expenses component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to AP Web Utilities...
CVE-2016-0509
CVE-2016-0509 affects Oracle E-Business Suite 11.5.10.2, specifically the Oracle Internet Expenses AP Web Utilities component. CNVD reports an unspecified vulnerability that allows a remote attacker to modify data via unknown vectors; NVD lists an overall impact to integrity with no confidentiali...
CVE-2016-0509
Unspecified vulnerability in the Oracle Internet Expenses component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to AP Web Utilities...
Unspecified Vulnerability in Websense TRITON AP-WEB
Websense TRITON is the Unified Content Architecture for data security. Websense TRITON AP-WEB HTTP authentication unspecified security vulnerability allows attackers to submit a special request to enumerate windows domain users...
Websense Triton and V-Series HTML Injection Vulnerabilities
Websense TRITON is the Unified Content Architecture for data security. Websense TRITON AP-WEB versions prior to 8.0.0 and V-Series 7.7 appliances suffer from multiple HTML injection vulnerabilities that can be exploited by remote attackers to inject malicious script or HTML code, which can be use...
CVE-2015-2762
Websense TRITON AP-WEB before 8.0.0 allows remote attackers to enumerate Windows domain user accounts via vectors related to HTTP authentication...
CVE-2015-2761
Cross-site scripting XSS vulnerability in the Exceptions and Scanning Exceptions Pages in Websense TRITON AP-WEB before 8.0.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in the Exceptions and Scanning Exceptions Pages in Websense TRITON AP-WEB before 8.0.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Authentication flaw
Websense TRITON AP-WEB before 8.0.0 allows remote attackers to enumerate Windows domain user accounts via vectors related to HTTP authentication...
CVE-2015-2762
Websense TRITON AP-WEB (before 8.0.0) is affected. The vulnerability allows remote attackers to enumerate Windows domain user accounts via HTTP authentication-related vectors. Root cause is exposure in the AP-WEB authentication flow prior to version 8.0.0. Impact includes potential information di...
CVE-2015-2761
Cross-site scripting XSS vulnerability in the Exceptions and Scanning Exceptions Pages in Websense TRITON AP-WEB before 8.0.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2015-2762
Websense TRITON AP-WEB before 8.0.0 allows remote attackers to enumerate Windows domain user accounts via vectors related to HTTP authentication...
CVE-2015-2761
The CVE-2015-2761 entry concerns a Cross-Site Scripting (XSS) vulnerability in the Websense TRITON AP-WEB product (and related TRITON/WEB suites) on the Exceptions and Scanning Exceptions Pages. The underlying issue allows remote attackers to inject arbitrary script/HTML via unspecified vectors, ...
CVE-2015-2748
Websense TRITON AP-WEB before 8.0.0 does not properly restrict access to files in explorerwse/, which allows remote attackers to obtain sensitive information via a direct request to a 1 Web Security incident report or the 2 Explorer configuration websense.ini file...
Information disclosure
Websense TRITON AP-WEB before 8.0.0 does not properly restrict access to files in explorerwse/, which allows remote attackers to obtain sensitive information via a direct request to a 1 Web Security incident report or the 2 Explorer configuration websense.ini file...
CVE-2015-2748
Websense TRITON AP-WEB before 8.0.0 does not properly restrict access to files in explorerwse/, which allows remote attackers to obtain sensitive information via a direct request to a 1 Web Security incident report or the 2 Explorer configuration websense.ini file...
CVE-2015-2748
CVE-2015-2748 affects Websense TRITON AP-WEB (and related Web Security/Explorer components) prior to version 8.0.0. The issue arises from failing to properly restrict access to the explorer_wse/ directory, allowing remote attackers to obtain sensitive information by directly requesting a Web Secu...