4 matches found
CVE-2020-2956
Vulnerability in the Oracle Human Resources product of Oracle E-Business Suite component: Hierarchy Diagrammers. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...
Oracle E-Business Suite Human Resources SQL Injection (CVE-2020-2956)
An SQL execution vulnerability exists in the Position Hierarchy Viewer module of the Human Resources component in Oracle E-Business Suite. The vulnerability is due to use of untrusted user input to build a portion of an SQL query string...
CVE-2020-2956
Vulnerability in the Oracle Human Resources product of Oracle E-Business Suite component: Hierarchy Diagrammers. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...
CVE-2020-2956
CVE-2020-2956 affects Oracle E-Business Suite Human Resources, Hierarchy Diagrammers (and related Hierarchy Viewer components). Connected advisories describe an SQL injection/unsafe input handling in the Position Hierarchy Viewer and Organization Hierarchy Viewer that can lead to unauthorized dat...