Lucene search
K

5 matches found

Nuclei
Nuclei
added 16 hours ago193 views

Oracle Business Intelligence Publisher - XML External Entity Injection

Oracle Business Intelligence Publisher is vulnerable to an XML external entity injection attack. The supported versions affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. This easily exploitable vulnerability allows unauthenticated attackers with network access via HTTP to compromise BI Publishe...

7.2CVSS7.1AI score0.05238EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/01/09 10:13 a.m.12 views

CVE-2019-2767

Vulnerability in the BI Publisher formerly XML Publisher component of Oracle Fusion Middleware subcomponent: BI Publisher Security. The supported version that is affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network acces...

7.2CVSS6.2AI score0.05238EPSS
Exploits0References1
OSV
OSV
added 2019/07/23 11:15 p.m.4 views

CVE-2019-2767

Vulnerability in the BI Publisher formerly XML Publisher component of Oracle Fusion Middleware subcomponent: BI Publisher Security. The supported version that is affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network acces...

7.2CVSS7.1AI score0.05238EPSS
Exploits0References1
NVD
NVD
added 2019/07/23 11:15 p.m.28 views

CVE-2019-2767

Vulnerability in the BI Publisher formerly XML Publisher component of Oracle Fusion Middleware subcomponent: BI Publisher Security. The supported version that is affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network acces...

7.2CVSS6.2AI score0.05238EPSS
Exploits0References1
CVE
CVE
added 2019/07/23 10:31 p.m.163 views

CVE-2019-2767

CVE-2019-2767 – Oracle BI Publisher (XML Publisher) XML External Entity Injection : The vulnerability affects Oracle Fusion Middleware’s BI Publisher component (subcomponent BI Publisher Security) versions 11.1.1.9.0, 12.2.1.3.0, and 12.2.1.4.0. It is exploitable over HTTP without authentication,...

7.2CVSS6.2AI score0.05238EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder