10511 matches found
CVE-2021-2364
The CVE-2021-2364 issue affects the Oracle E-Business Suite iSupplier Portal (Accounts component). Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.10. The vulnerability is exploitable by a low-privileged, unauthenticated attacker over HTTP with network access, potentially leading to unauthori...
CVE-2021-2363
Vulnerability in the Oracle Public Sector Financials International product of Oracle E-Business Suite component: Authorization. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2021-2361
Vulnerability in the Oracle Advanced Inbound Telephony product of Oracle E-Business Suite component: SDK client integration. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
Oracle E-Business Suite输入验证错误漏洞
Oracle E-Business Suite is an extension of the original Application ERP and includes a collection of ERP Enterprise Resource Planning Management, HR Human Resource Management, CRM Customer Relationship Management, and other applications that are seamlessly integrated into one management suite. A...
Oracle Fusion Middleware 安全漏洞
Oracle Outside In Technology is a software development kit SDK that provides developers with a comprehensive solution for extracting, normalizing, cleaning, converting, and viewing content in more than 600 unstructured file formats. A security vulnerability exists in the Outside In Filters...
Oracle Hyperion输入验证错误漏洞
Oracle Hyperion is the United States Oracle Oracle company's set of financial modeling applications. The software provides financial closure, report creation, and other functions. A security vulnerability exists in Oracle Hyperion's Hyperion Infrastructure Technology product Component: Lifecycle...
Oracle Fusion Middleware 安全漏洞
Oracle Outside In Technology is a software development kit SDK that provides developers with a comprehensive solution for extracting, normalizing, cleaning, converting, and viewing content in more than 600 unstructured file formats. In Filters component contains a security vulnerability. The...
Oracle Fusion Middleware 安全漏洞
Oracle Outside In Technology is a software development kit SDK that provides developers with a comprehensive solution for extracting, normalizing, cleaning, converting, and viewing content in more than 600 unstructured file formats. In Filters component contains a security vulnerability. An...
Oracle Fusion Middleware 安全漏洞
Oracle Outside In Technology is a software development kit SDK that provides developers with a comprehensive solution for extracting, normalizing, cleaning, converting, and viewing content in more than 600 unstructured file formats. A security vulnerability exists in the Outside In Filters...
Oracle E-Business Suite输入验证错误漏洞
Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management, and so on, a collection of management software, is a seamless integration of a management suite. Oracle Workflow...
Oracle MySQL Server 输入验证错误漏洞
Oracle MySQL Server mysqld is the MySQL server, the main program that performs most of the work in a MySQL installation. A security vulnerability exists in the Server: Replication component in Oracle MySQL Server 5.7.34, 8.0.25 and earlier versions. An attacker can exploit this vulnerability to...
PEEL Shopping 9.3.0 - (id) Time-based SQL Injection Vulnerability
Exploit Title: PEEL Shopping 9.3.0 - 'id' Time-based SQL Injection Exploit Author: faisalfs10x https://github.com/faisalfs10x Vendor Homepage: https://www.peel.fr Software Link: https://sourceforge.net/projects/peel-shopping/files/peel-shopping930.zip/download Version: prior to 9.4.0 Tested on:...
openSUSE 15 Security Update : java-1_8_0-openjdk (openSUSE-SU-2021:1989-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1989-1 advisory. - Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versio...
CVE-2021-29730
IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 201164...
ProjectWorlds College Management System Cross-Site Request Forgery Vulnerability
ProjectWorlds College Management System is a college management system. projectWorlds College Management System is vulnerable to cross-site request forgery, which can be exploited by attackers to modify, delete student, faculty, teacher, subject, grade, location, and article data or create new...
Philips Vue PACS 安全漏洞
Philips Vue PACS is an image management solution from Philips Europe. A security vulnerability exists in Philips Vue PACS. The vulnerability allows an unauthorized person or process to eavesdrop, view or modify data, gain access to the system, execute code, install unauthorized software, or affec...
Philips Vue PACS 加密问题漏洞
Philips Vue PACS is an image management solution from Philips Europe. A vulnerability exists in Philips Vue PACS due to an encryption issue. The vulnerability allows unauthorized persons or processes to eavesdrop on, view, or modify data, gain access to the system, execute code, install...
Philips Vue PACS 安全漏洞
Philips Vue PACS is an image management solution from Philips Europe. A security vulnerability exists in Philips Vue PACS. The vulnerability allows an unauthorized person or process to eavesdrop, view or modify data, gain access to the system, execute code, install unauthorized software, or affec...
Philips Vue PACS 安全漏洞
Philips Vue PACS is an image management solution from Philips Europe. A security vulnerability exists in Philips Vue PACS. The vulnerability allows an unauthorized person or process to eavesdrop, view or modify data, gain access to the system, execute code, install unauthorized software, or affec...
CVE-2021-34394
Trusty contains a vulnerability in the NVIDIA OTE protocol that is present in all TAs. An incorrect message stream deserialization allows an attacker to use the malicious CA that is run by the user to cause the buffer overflow, which may lead to information disclosure and data modification...