Lucene search
K

152 matches found

CVE
CVE
added 2021/04/22 9:53 p.m.61 views

CVE-2021-2268

CVE-2021-2268 affects Oracle E-Business Suite, Oracle Quoting Courseware (versions 12.1.1–12.1.3). The vulnerability allows a low-privilege, network-accessible attacker over HTTP to compromise Oracle Quoting, potentially leading to unauthorized creation, deletion, or modification of data or acces...

8.1CVSS8.1AI score0.00987EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/04/22 9:53 p.m.15 views

CVE-2021-2268

Vulnerability in the Oracle Quoting product of Oracle E-Business Suite component: Courseware. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Quoting. Successful attacks of th...

8.1CVSS8.3AI score0.00987EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/04/20 12:0 a.m.4 views

Oracle Quoting 安全漏洞

Oracle Quoting is an application from Oracle Corporation, USA. An automated sales quote generation application that creates and manages customer quotes easily, consistently, and securely across all customer interaction channels, such as field sales, telesales, e-commerce, and business partners. A...

8.1CVSS7.1AI score0.00987EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/05/26 12:0 a.m.8 views

The vulnerability of the Courseware component of the customer interaction application of Oracle Quoting allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Courseware component of the Oracle Quoting application lies in its lack of access control mechanisms. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information via the HTTP network protocol...

8.2CVSS7.5AI score0.01487EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2020/04/15 1:29 p.m.11 views

CVE-2020-2833

Vulnerability in the Oracle Quoting product of Oracle E-Business Suite component: Courseware. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Quoting. Successful attacks...

8.2CVSS7.3AI score0.01487EPSS
Exploits0References1
OSV
OSV
added 2016/02/22 5:59 a.m.3 views

UBUNTU-CVE-2015-5341

modscorm in Moodle through 2.6.11, 2.7.x before 2.7.11, 2.8.x before 2.8.9, and 2.9.x before 2.9.3 mishandles availability dates, which allows remote authenticated users to bypass intended access restrictions and read SCORM contents via unspecified vectors...

4.3CVSS6.2AI score0.01306EPSS
Exploits0References3
CNVD
CNVD
added 2015/12/18 12:0 a.m.2 views

Schneider Electric ProClima Denial of Service Vulnerability

Schneider Electric ProClima is a thermal calculation software from Schneider Electric France. A denial of service vulnerability exists in Schneider Electric ProClima versions prior to 6.2. It allows remote attackers to execute arbitrary code or cause a denial of service via a crafted integer valu...

6.8CVSS7.8AI score0.03829EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2011/10/10 5:22 p.m.3 views

SWSE - Most advanced Wi-Fi Hacking and Security Course online

SWSE - Most Advanced Wi-Fi Hacking and Security Course online We covered the launch of the SecurityTube Wi-Fi Security Expert in a previous article. As their entire courseware is available online free of charge to evaluate: , I took a look over the weekend and I was very impressed. The instructor...

7.2AI score
Exploits0
Cvelist
Cvelist
added 2000/02/04 5:0 a.m.20 views

CVE-1999-0394

DPEC Online Courseware allows an attacker to change another user's password without knowing the original password...

6.7AI score0.01603EPSS
Exploits0References1
CVE
CVE
added 2000/02/04 5:0 a.m.34 views

CVE-1999-0394

CVE-1999-0394 affects DPEC Online Courseware . The vulnerability allows an attacker to change another user’s password without knowing the original password. Red Hat, NVD, and CVE listings confirm this description. The PT-1999-1080 entry notes that affected versions are not specified and there is ...

10CVSS7.1AI score0.01603EPSS
Exploits0References1
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.31 views

dpec-course-passwds.txt

Date: Fri, 15 Jan 1999 21:45:24 -0700 From: Joel Knight To: [email protected] Subject: DPEC Online Courseware DPEC's www.dpec.com Online Courseware has a nasty bug in it that allows anyone to change anyone elses password without knowing what their current password is. This is NOT limited to...

7.4AI score
Exploits0
NVD
NVD
added 1999/01/01 5:0 a.m.7 views

CVE-1999-0394

DPEC Online Courseware allows an attacker to change another user's password without knowing the original password...

10CVSS6.7AI score0.01603EPSS
Exploits0References1
Rows per page
Query Builder