The vulnerability of the Security component (SQL Logger) of the Oracle Retail Merchandising System allows a perpetrator to gain access to read data or modify data.

The vulnerability of the Security component SQL Logger of the Oracle Retail Merchandising System is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to read, modify, add, or delete data using the HTTP protoc...

CVE-2018-3068

Vulnerability in the PeopleSoft Enterprise HCM Human Resources component of Oracle PeopleSoft Products subcomponent: Compensation. The supported version that is affected is 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

CVE-2018-3034

Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications subcomponent: Infrastructure. Supported versions that are affected are 12.0.4, 12.1.0, 12.3.0 and 12.4.0. Easily exploitable vulnerability allows low privileged attacker with network access...

CVE-2018-2669

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality Applications subcomponent: Report. Supported versions that are affected are 8.5.1 and 9.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

CVE-2017-10223

Vulnerability in the Oracle Hospitality Materials Control component of Oracle Hospitality Applications subcomponent: Purchasing. Supported versions that are affected are 8.31.4 and 8.32.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

The vulnerability of the Remote Administration Daemon component of the Solaris operating system allows a perpetrator to gain access to read or modify data, thereby causing a partial service disruption.

The vulnerability of the Remote Administration Daemon component of the Solaris operating system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain read, modify, add, or delete access to data, and cause partial service interruption...

The vulnerability of the Oracle MySQL database management system allows a hacker to gain access to read data or modify data.

The vulnerability of the MySQL Server component of the Oracle MySQL database management system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to gain access to read, modify, add, or delete data via network packets...

Oracle Marketing Unauthorized Operation Vulnerability (CNVD-2017-06406)

Oracle E-Business Suite E-Business Suite is Oracle's fully integrated suite of global business management software, of which Oracle Marketing is a component for managing marketing-related information and processes. A security vulnerability exists in the User Interface subcomponent of the Oracle...

Unspecified Vulnerability in Oracle Enterprise Manager Grid Control (CNVD-2015-06826)

Oracle Enterprise Manager Grid Control is a suite of systems management software from Oracle Corporation. The software provides centralized monitoring, lifecycle management and other functions for Oracle IT architecture. enterprise Manager Ops Center is one of the enterprise data center monitorin...

WebspotBlogging 3.0 Login.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16319/info WebspotBlogging is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation...

Blax Blog 0.1 'girisyap.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/38465/info Blax Blog is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

UBB.threads 7.3.1 'Forum[]' Array SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31074/info UBB.threads is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...

Joomla! DM Orders Component 'id' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37655/info The DM Orders component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

PHP-Nuke Johannes Hass 'gaestebuch 2.2 Module - 'id' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28063/info The 'gaestebuch' module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

PHP-Nuke NukeC30 3.0 Module - 'id_catg' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28197/info The NukeC30 module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

Matterdaddy Market - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/60150/info Matterdaddy Market is prone to multiple security vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script code, upload arbitrary files, steal...

Mibew Messenger 1.6.4 - 'threadid' SQL Injection

source: https://www.securityfocus.com/bid/54857/info Mibew Messenger is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or modify...

ADICO - 'index.php' Script SQL Injection

source: https://www.securityfocus.com/bid/54023/info ADICO is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or modify data, or...

EasyPHP - main.php SQL Injection

EasyPHP - main.php SQL Injection source: https://www.securityfocus.com/bid/52781/info EasyPHP is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise...

SjXjV 2.3 - 'post.php' SQL Injection

source: https://www.securityfocus.com/bid/50426/info SjXjV is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit will allow an attacker to compromise the application, access or modify data, or...