9852 matches found
CVE-2007-5798
IBM WebSphere Application Server 6.1.x before Fix Pack 13 (6.1.0.13) is affected by multiple XSS vulnerabilities in uddigui/navigateTree.do of the UDDI user console. The issue allows remote attackers to inject arbitrary web script or HTML via the keyField, nameField, valueField, and frameReturn p...
CVE-2002-2345
The CVE-2002-2345 entry concerns Oracle 9i Application Server 9.0.2, where the web cache administrator interface password is stored in plaintext. This credential leakage could allow remote attackers to access the administrator interface, implying unauthorized access to cached credentials. Public ...
CVE-2007-5675
CVE-2007-5675 affects the MultiXTpm Application Server, with the vulnerable component/function identified as the DebugPrint function. The root cause is described as a stack-based buffer overflow, allowing an attacker to supply a long string argument that could lead to remote code execution. Affec...
Multiple SQL Injection Flaws in Oracle CTX_DOC package
NGSSoftware Insight Security Research Advisory Name: Multiple SQL Injection Flaws in Oracle CTXDOC package Systems Affected: Oracle 10g release 1 and 2 Severity: High Vendor URL: http://www.oracle.com/ Author: David Litchfield [email protected] Reported: 6 June 2005 Date of Public Advisory:...
Design/Logic Flaw
Unspecified vulnerability in Oracle Help for Web, as used in Oracle Application Server, Oracle Database 10.2.0.3, and Enterprise Manager 10.1.0.6, has unknown impact and remote attack vectors, aka EM02...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Process Mgmt & Notification component in Oracle Application Server 10.1.3.3 has unknown impact and remote attack vectors, aka AS01...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.0.2, 10.1.2.2, and 10.1.4.1, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS11...
CVE-2007-5521
Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.3.3, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS06...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 9.2.0.8 and 9.2.0.8DV, and Oracle Application Server 9.0.4.3, 10.1.3.0.0 up to 10.1.3.3.0, and 10.1.2.0.1 up to 10.1.2.2.0, has unknown impact and remote attack vectors, aka AS05...
CVE-2007-5520
Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 9.2.0.8 and 9.2.0.8DV, and Oracle Application Server 9.0.4.3, 10.1.3.0.0 up to 10.1.3.3.0, and 10.1.2.0.1 up to 10.1.2.2.0, has unknown impact and remote attack vectors, aka AS05...
CVE-2007-5518
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Application Server 10.1.3.2 has unknown impact and remote attack vectors, aka AS03...
CVE-2007-5524
Unspecified vulnerability in the Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS09 or AS9...
CVE-2007-5519
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3 and 10.1.2.0.2, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS04...
CVE-2007-5522
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.4.1 has unknown impact and remote attack vectors, aka AS07...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.4.1 has unknown impact and remote attack vectors, aka AS07...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS09 or AS9...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.0.2 and 10.1.4.1, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS02...
Design/Logic Flaw
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Application Server 10.1.3.2 has unknown impact and remote attack vectors, aka AS03...
CVE-2007-5523
Unspecified vulnerability in the Oracle Internet Directory component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.4.0, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS08...
CVE-2007-5518
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Application Server 10.1.3.2 has unknown impact and remote attack vectors, aka AS03...