7 matches found
EUVD-2024-32837
Malicious code in bioql PyPI...
CVE-2023-32635
XBRL data create application version 7.0 and earlier improperly restricts XML external entity references XXE. By processing a specially crafted XBRL file, arbitrary files on the system may be read by an attacker...
Xxe
XBRL data create application version 7.0 and earlier improperly restricts XML external entity references XXE. By processing a specially crafted XBRL file, arbitrary files on the system may be read by an attacker...
CVE-2023-32635
XBRL data create application version 7.0 and earlier improperly restricts XML external entity references XXE. By processing a specially crafted XBRL file, arbitrary files on the system may be read by an attacker...
CVE-2023-32635
CVE-2023-32635 affects the XBRL data create application (7.0 and earlier). The root cause is improper restriction of XML External Entity (XXE) references, enabling a specially crafted XBRL file to cause the system to read arbitrary files. The issue is documented across multiple sources (e.g., JVN...
CVE-2018-3314
Vulnerability in the MICROS Relate CRM Software component of Oracle Retail Applications subcomponent: Customer. The supported version that is affected is 11.4. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise MICROS Relate CRM Software...
Oracle Marketing Unauthorized Operation Vulnerability (CNVD-2017-06406)
Oracle E-Business Suite E-Business Suite is Oracle's fully integrated suite of global business management software, of which Oracle Marketing is a component for managing marketing-related information and processes. A security vulnerability exists in the User Interface subcomponent of the Oracle...