Oracle Business Intelligence Publisher - XML External Entity Injection

Oracle Business Intelligence Publisher is vulnerable to an XML external entity injection attack. The supported versions affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. This easily exploitable vulnerability allows unauthenticated attackers with network access via HTTP to compromise BI Publishe...

Oracle Fusion - Directory Traversal/Local File Inclusion

Oracle Business Intelligence Enterprise Edition 5.5.0.0.0, 12.2.1.3.0, and 12.2.1.4.0 are vulnerable to local file inclusion vulnerabilities via "getPreviewImage." id: CVE-2020-14864 info: name: Oracle Fusion - Directory Traversal/Local File Inclusion author: Ivo Palazzolo @palaziv severity: high...

WordPress WP Business Intelligence Lite plugin <= 3.2.0 - Authenticated (Subscriber+) Missing Authorization to Privilege Escalation vulnerability

Authenticated Subscriber+ Missing Authorization to Privilege Escalation vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin Business Intelligence Lite versions = 3.2.0...

CVE-2026-27683 Reflected cross site scripting vulnerability in SAP BusinessObjects Business Intelligence Platform

SAP BusinessObjects Business Intelligence application allows an authenticated attacker to inject malicious JavaScript payloads through crafted URLs. When a victim accesses the URL, the script executes in the user�s browser, potentially exposing restricted information. This results in a low impact...

CVE-2026-27683

CVE-2026-27683 affects SAP BusinessObjects BI: an authenticated attacker can inject malicious JavaScript via crafted URLs, causing script execution in the victim’s browser. Impact is limited to confidentiality (LOW) with no impact on integrity or availability. The vulnerability arises from URL-ba...

Oracle Business Intelligence Publisher (January 2026 CPU)

The 7.6.0.0.0 and 8.2.0.0.0 versions of Oracle Business Intelligence Publisher installed on the remote host are affected by a vulnerability as referenced in the January 2026 CPU advisory. - Security-in-Depth issue in the Oracle BI Publisher product of Oracle Analytics component: Development...

MongoDB Connector for BI installation MSI leave ACLs unset on custom installation directories

MongoDB Connector for BI installation via MSI on Windows leaves ACLs unset on custom install directories allows Privilege Escalation.This issue affects MongoDB Connector for BI: from 2.0.0 through 2.14.24...

EUVD-2021-16462

Malware in sbrugna...

EUVD-2009-1985

Malware in sbrugna...

EUVD-2009-1994

Malware in sbrugna...

EUVD-2011-2235

Malware in sbrugna...

EUVD-2012-4783

Malware in sbrugna...

EUVD-2013-3965

Malware in sbrugna...

EUVD-2016-0252

Malware in sbrugna...

EUVD-2016-0256

Malware in sbrugna...

EUVD-2018-14326

Malware in sbrugna...

EUVD-2018-14328

Malware in sbrugna...

EUVD-2018-14334

Malware in sbrugna...

EUVD-2018-14302

Malware in sbrugna...

EUVD-2019-1155

Malware in sbrugna...