Lucene search
+L

240 matches found

attackerkb
attackerkb
added 2017/01/27 10:59 p.m.3 views

CVE-2016-8323

Vulnerability in the Oracle FLEXCUBE Core Banking component of Oracle Financial Services Applications subcomponent: Core. Supported versions that are affected are 5.1.0, 5.2.0 and 11.5.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

5.5CVSS8.2AI score0.00932EPSS
Exploits0References4Affected Software1
cnvd
cnvd
added 2016/10/20 12:0 a.m.4 views

Unspecified Vulnerability in Oracle Sun Systems Products Suite Solaris Component

Oracle Sun Systems Products Suite is a suite of Sun systems products from Oracle Corporation, of which Solaris is a Unix-like operating system. A local security vulnerability exists in the Kernel Zones subcomponent of the Solaris component of Oracle Sun Systems Products Suite, version 11.3. An...

6.1CVSS6.4AI score0.00341EPSS
Exploits0References1
prion
prion
added 2016/09/01 10:59 a.m.17 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in IBM Connections 4.0 through CR4, 4.5 through CR5, 5.0 before CR4, and 5.5 before CR1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that update data...

3.5CVSS7.1AI score0.00439EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2016/09/01 10:59 a.m.2 views

CVE-2016-2998

Cross-site request forgery CSRF vulnerability in IBM Connections 4.0 through CR4, 4.5 through CR5, 5.0 before CR4, and 5.5 before CR1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that update data...

3.5CVSS5.8AI score0.00439EPSS
Exploits0References4
osv
osv
added 2016/07/26 9:59 p.m.24 views

MGASA-2016-0267 Updated php/xmlrpc-epi/timezone packages fix security vulnerability

Stack-based buffer overflow vulnerability in virtualfileex CVE-2016-6289. Use After Free in unserialize with Unexpected Session Deserialization CVE-2016-6290. Out of bound read in exifprocessIFDinMAKERNOTE CVE-2016-6291. NULL Pointer Dereference in exifprocessusercomment CVE-2016-6292...

9.8CVSS8.4AI score0.06271EPSS
Exploits7References8
cnvd
cnvd
added 2016/04/22 12:0 a.m.5 views

Unspecified Vulnerability in Oracle PeopleSoft Products PeopleSoft Enterprise PeopleTools Component (CNVD-2016-02559)

Oracle PeopleSoft is a suite of enterprise human capital management solutions from Oracle.PeopleSoft Enterprise HCM Candidate Gateway is a self-service front-end to the Oracle PeopleSoft Enterprise Recruiting solution component. An unspecified vulnerability in the Activity Guide subcomponent of t...

5.4CVSS6.8AI score0.01047EPSS
Exploits0References1
cnvd
cnvd
added 2016/04/22 12:0 a.m.6 views

Unspecified Vulnerability in Oracle PeopleSoft Products PeopleSoft Enterprise PeopleTools Component (CNVD-2016-02561)

Oracle PeopleSoft is a suite of enterprise human capital management solutions from Oracle.PeopleSoft Enterprise HCM Candidate Gateway is a self-service front-end to the Oracle PeopleSoft Enterprise Recruiting solution component. An unspecified vulnerability exists in the Portal subcomponent of th...

5.4CVSS6.8AI score0.01069EPSS
Exploits0References1
cnvd
cnvd
added 2016/04/22 12:0 a.m.4 views

Oracle PeopleSoft Products PeopleSoft Enterprise PeopleTools Component Denial of Service Vulnerability (CNVD-2016-02555)

Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle Corporation, and PeopleSoft Enterprise PeopleTools is one of the tools and technology components that transforms the way organizations manage, use, and maintain their PeopleSoft software. PeopleSoft...

7.4CVSS6.7AI score0.01165EPSS
Exploits0References1
cnvd
cnvd
added 2016/04/22 12:0 a.m.4 views

Unspecified Vulnerability in Oracle E-Business Suite Application Object Library Component

Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. Oracle Application Object Library AOL, Application Object Library is one of the system management components. An unspecified vulnerability exists in t...

4.7CVSS6.8AI score0.01207EPSS
Exploits0References1
cnvd
cnvd
added 2016/04/22 12:0 a.m.3 views

Oracle MySQL Server: Federated Subcomponent Denial of Service Vulnerability

Oracle MySQL is an open source relational database management system from Oracle. A security vulnerability exists in the Server: Federated subcomponent of Oracle MySQL, which can be exploited by an attacker to update, insert, or delete data, and may also cause a denial of service. The integrity a...

4.7CVSS6.4AI score0.0118EPSS
Exploits0References1
patchstack
patchstack
added 2016/02/03 12:0 a.m.10 views

WordPress WP Invoice Plugin <= 4.1.0 - Multiple Vulnerabilities

This plugin is prone to unauthorized setting changes, retrieving invoices of arbitrary users, updating previously invoiced users meta data and privilege escalation of logged in users. Solution Update the plugin...

4.3AI score
Exploits0References1Affected Software1
cnvd
cnvd
added 2015/10/22 12:0 a.m.8 views

Vulnerability in Oracle Fusion Middleware WebCenter Content component (CNVD-2015-06854)

Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platform for enterprise and cloud environments from Oracle. The platform provides middleware, software collections and other features. oracle WebCenter Content is one of the enterprise content management solution...

4.3CVSS6.7AI score0.0154EPSS
Exploits0References1
cnvd
cnvd
added 2015/10/22 12:0 a.m.5 views

Vulnerability in Oracle Fusion Middleware WebCenter Sites Component

Oracle Fusion Middleware is a suite of business innovation platforms for enterprise and cloud environments from Oracle Corporation. Oracle WebCenter Sites is a web experience management component that enables marketers and business users to create and manage interactive social online experiences ...

4.3CVSS6.8AI score0.01526EPSS
Exploits0References1
seebug
seebug
added 2014/10/04 12:0 a.m.104 views

DESTOON前台getshell

简要描述: 如题。。 详细说明: \module\know\answer.inc.php 143 - 161行 case 'raise': //这个功能是 "知道功能" 悬赏的次数更新,因为默认只允许2次提高悬赏的次数 if$credit $credit dalert$L'lackcredit', 'goback'; $couldraise = $couldadmin;//是否是 "知道"发布的作者. if$item'process' != 1 $couldraise = false; if$item'raise' = $MOD'maxraise' $couldraise = false...

7AI score
Exploits0
myhack58
myhack58
added 2014/10/03 12:0 a.m.22 views

Cicada-known Enterprise Portal system v2. 5 sql injection to admin-vulnerability warning-the black bar safety net

The problem is when the user modifies the information of the place /system/module/user/control.php public function edit$account = " if!$ account or RUNMODE == 'front' $account = $this-app-user-account; if$this-app-user-account == 'guest' $this-locateinlink'login'; if! empty$POST...

1.5AI score
Exploits0
osv
osv
added 2014/09/29 11:11 p.m.9 views

SUSE-SU-2015:0928-1 Recommended update for sm-ncc-sync-data

This update for sm-ncc-sync-data contains the following changes: Add SUSE Cloud 4 channels. bnc883057 Fix parent label of the LTSS channel for SLMS...

7.5CVSS7.5AI score0.02694EPSS
Exploits0References34
myhack58
myhack58
added 2011/06/13 12:0 a.m.38 views

JaManaGe enterprise built Station system v2. 0 injection vulnerability and fix-vulnerability warning-the black bar safety net

By:Mr. DzY aManaGe the enterprise built Station system with perfect enterprise website background management functions, can through the background simple operation to achieve a large amount of information updated. Finished Good system, products, news, talent, and customer service features and mor...

0.1AI score
Exploits0
zdt
zdt
added 2007/04/30 12:0 a.m.49 views

psipuss 1.0 (editusers.php) Remote Change Admin Password Exploit

Exploit for unknown platform in category web applications ================================================================ psipuss 1.0 editusers.php Remote Change Admin Password Exploit ================================================================ ?php / '/ -.-...

7.1AI score
Exploits0
mskb
mskb
added 1970/01/01 12:0 a.m.68 views

May 2010 cumulative time zone update for Windows operating systems

None None...

6.1AI score
Exploits0
mskb
mskb
added 1970/01/01 12:0 a.m.121 views

December 2010 cumulative time zone update for Windows operating systems

None None...

6.1AI score
Exploits0
Rows per page
Query Builder