Unspecified Vulnerability in Oracle PeopleSoft PeopleTools Fluid Core Component

Oracle PeopleSoft is a suite of enterprise human capital management solutions. An unspecified vulnerability in the Oracle PeopleSoft PeopleTools Fluid Corek component allows remote attackers to exploit the vulnerability to make unauthorized changes to data...

The vulnerability of the Oracle E-Business Suite system’s automation functionality allows a perpetrator to alter data.

The vulnerability of the Oracle Applications Manager component in the Oracle E-Business Suite automation system is related to errors in the code. Exploiting this vulnerability allows an attacker to perform unauthorized updates, insertions, deletions of data, as well as gain read access to the dat...

PT-2019-3245 · Oracle +9 · Mysql Server +8

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 5.6.44 and prior MySQL Server versions 5.7.26 and prior MySQL Server versions 8.0.16 and prior Description: The issue is related to improper access control in the MySQL Server component of Oracle MySQL, specifically in t...

The vulnerability of the Windows operating system, which allows a remote attacker to escalate their privileges

The Microsoft Windows operating system contains a vulnerability related to improper verification and application of impersonation levels. This allows attackers to bypass security checks and elevate their privileges, including gaining administrator account information. If exploited successfully,...

[CVE-REQUEST] Plone XSS and permission errors

Hello all, As a member of the Plone security response team I hereby notify you that we have been made aware of three distinct security holes in Plone and are requesting CVE identifiers. 1. Reflected XSS attack A crafted URL can display arbitrary HTML output 2. Persistent XSS attack Certain valid...