226 matches found
Scanners-Box
This is a collection of open-source scanning tools and wordlists for web application security testing. The repository, Scanners-Box, is a collection of tools from various contributors, including lijiejie, ringzero, and others. The tools are categorized into subdomains, database vulnerability...
CVE-2019-2557
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite subcomponent: Load Testing for Web Apps. The supported version that is affected is 13.3.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
Design/Logic Flaw
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite subcomponent: Load Testing for Web Apps. The supported version that is affected is 13.3.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
CVE-2019-2557
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite subcomponent: Load Testing for Web Apps. The supported version that is affected is 13.3.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
CVE-2019-2557
CVE-2019-2557 affects the Oracle Application Testing Suite (OATS) Load Testing for Web Apps, specifically version 13.3.0.1. The Red Hat/Oracle records describe a post-auth vulnerability in the DownloadServlet used to serve templates (mapped at /download). An authenticated (post-auth) attacker can...
CVE-2019-2557
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite subcomponent: Load Testing for Web Apps. The supported version that is affected is 13.3.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
Oracle Application Testing Suite DownloadServlet Directory Traversal Remote Code Execution
Oracle Application Testing Suite versions 13.3.0.1 and prior are vulnerable to a directory traversal attack. An attacker could leverage this to steal sensitive credentials, decrypt them, gain privileges, and get remote code execution. Recent assessments: wchen-r7 at May 09, 2019 5:57pm UTC...
The vulnerability of the Oracle Application Testing Suite’s Load Testing for Web Apps component within the Oracle Enterprise Manager software platform allows a perpetrator to gain unauthorized access to protected information or cause service failures.
The vulnerability of the Oracle Application Testing Suite’s Load Testing for Web Apps component is related to insufficient access control. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information or cause service failures using the HTTP...
The vulnerability of the Oracle Application Testing Suite’s Load Testing for Web Apps component within the Oracle Enterprise Manager software platform allows a malicious actor to gain unauthorized access to protected data or cause service failures.
The vulnerability of the Oracle Application Testing Suite’s Load Testing for Web Apps component is related to access control deficiencies. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected data or cause service failures using the HTTP protocol...
Oracle Application Testing Suite Detection (Windows SMB Login)
SMB login-based detection of Oracle Application Testing Suite. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Application Testing Suite Multiple Vulnerabilities (Jan 2019 CPU)
The version of Oracle Application Testing Suite installed on the remote host is affected by multiple vulnerabilities : - Enterprise Manager Base Platform Agent Next Gen Jython component of Oracle Enterprise Manager Products Suite is easily exploited and can allow an unauthenticated attacker the...
Unspecified Vulnerability in Oracle Enterprise Manager Products Suite (CNVD-2019-37391)
Oracle Enterprise Manager Products Suite is a set of Oracle's on-premise management platform. Application Testing Suite is one of the application testing components. A security vulnerability exists in the Application Testing Suite component of Oracle Enterprise Manager Products Suite. An attacker...
CVE-2018-3304
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite subcomponent: Load Testing for Web Apps. Supported versions that are affected are 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1. Easily exploitable vulnerability allows unauthenticated attacker...
Design/Logic Flaw
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite subcomponent: Load Testing for Web Apps. Supported versions that are affected are 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1. Easily exploitable vulnerability allows low privileged attacker...
Design/Logic Flaw
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite subcomponent: Load Testing for Web Apps. Supported versions that are affected are 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1. Easily exploitable vulnerability allows unauthenticated attacker...
CVE-2018-3304
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite subcomponent: Load Testing for Web Apps. Supported versions that are affected are 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1. Easily exploitable vulnerability allows unauthenticated attacker...
CVE-2018-3304
CVE-2018-3304 affects the Oracle Application Testing Suite Load Testing for Web Apps in Oracle Enterprise Manager Products Suite (affected versions include 12.5.0.3, 13.1.0.1, 13.2.0.1, 13.3.0.1). The vulnerability allows an unauthenticated attacker, over HTTP, to perform unauthorized updates/ins...
CVE-2018-3305
CVE-2018-3305 | A vulnerability in Oracle Application Testing Suite Load Testing for Web Apps (Oracle Enterprise Manager Products Suite) is documented. The issue affects versions 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1 and is tied to the Load Testing for Web Apps subcomponent. The connected SRC...
CVE-2018-3305
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite subcomponent: Load Testing for Web Apps. Supported versions that are affected are 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1. Easily exploitable vulnerability allows low privileged attacker...
CVE-2018-3304
Vulnerability in the Oracle Application Testing Suite component of Oracle Enterprise Manager Products Suite subcomponent: Load Testing for Web Apps. Supported versions that are affected are 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1. Easily exploitable vulnerability allows unauthenticated attacker...