152 matches found
CVE-2021-2268
CVE-2021-2268 affects Oracle E-Business Suite, Oracle Quoting Courseware (versions 12.1.1–12.1.3). The vulnerability allows a low-privilege, network-accessible attacker over HTTP to compromise Oracle Quoting, potentially leading to unauthorized creation, deletion, or modification of data or acces...
CVE-2021-2268
Vulnerability in the Oracle Quoting product of Oracle E-Business Suite component: Courseware. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Quoting. Successful attacks of th...
Oracle Quoting 安全漏洞
Oracle Quoting is an application from Oracle Corporation, USA. An automated sales quote generation application that creates and manages customer quotes easily, consistently, and securely across all customer interaction channels, such as field sales, telesales, e-commerce, and business partners. A...
The vulnerability of the Courseware component of the customer interaction application of Oracle Quoting allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Courseware component of the Oracle Quoting application lies in its lack of access control mechanisms. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information via the HTTP network protocol...
CVE-2020-2833
Vulnerability in the Oracle Quoting product of Oracle E-Business Suite component: Courseware. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Quoting. Successful attacks...
UBUNTU-CVE-2015-5341
modscorm in Moodle through 2.6.11, 2.7.x before 2.7.11, 2.8.x before 2.8.9, and 2.9.x before 2.9.3 mishandles availability dates, which allows remote authenticated users to bypass intended access restrictions and read SCORM contents via unspecified vectors...
Schneider Electric ProClima Denial of Service Vulnerability
Schneider Electric ProClima is a thermal calculation software from Schneider Electric France. A denial of service vulnerability exists in Schneider Electric ProClima versions prior to 6.2. It allows remote attackers to execute arbitrary code or cause a denial of service via a crafted integer valu...
SWSE - Most advanced Wi-Fi Hacking and Security Course online
SWSE - Most Advanced Wi-Fi Hacking and Security Course online We covered the launch of the SecurityTube Wi-Fi Security Expert in a previous article. As their entire courseware is available online free of charge to evaluate: , I took a look over the weekend and I was very impressed. The instructor...
CVE-1999-0394
DPEC Online Courseware allows an attacker to change another user's password without knowing the original password...
CVE-1999-0394
CVE-1999-0394 affects DPEC Online Courseware . The vulnerability allows an attacker to change another user’s password without knowing the original password. Red Hat, NVD, and CVE listings confirm this description. The PT-1999-1080 entry notes that affected versions are not specified and there is ...
dpec-course-passwds.txt
Date: Fri, 15 Jan 1999 21:45:24 -0700 From: Joel Knight To: [email protected] Subject: DPEC Online Courseware DPEC's www.dpec.com Online Courseware has a nasty bug in it that allows anyone to change anyone elses password without knowing what their current password is. This is NOT limited to...
CVE-1999-0394
DPEC Online Courseware allows an attacker to change another user's password without knowing the original password...