Unspecified Vulnerability in Oracle E-Business Suite Oracle Approvals Management AME Page rendering Component

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle Approvals Management AME Page rendering component within Oracle E-Business Suite, which could be exploited by remote attackers to submit a special request for...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Advanced Collections Administration Component

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle Advanced Collections Administration component of Oracle E-Business Suite, which allows remote attackers to exploit the vulnerability to submit special requests t...

Unspecified Vulnerability in Oracle Enterprise Manager Grid Control Enterprise Manager Base Platform UI Framework Component

Oracle Enterprise Manager is an enhanced management suite for ORACLE Fusion endpoint software. An unspecified security vulnerability in the Enterprise Manager Base Platform UI Framework component of Oracle Enterprise Manager Grid Control allows remote attackers to exploit the vulnerability to...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Advanced Collections Administration Component (CNVD-2016-00619)

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle Advanced Collections Administration component of Oracle E-Business Suite, which allows remote attackers to exploit the vulnerability to submit special requests t...

Unspecified Vulnerability in Oracle Enterprise Manager Grid Control Enterprise Manager Base Platform Loader Service Component

Oracle Enterprise Manager is an enhanced management suite for ORACLE Fusion endpoint software. An unspecified security vulnerability in the Enterprise Manager Base Platform Loader Service component of Oracle Enterprise Manager Grid Control allows remote attackers to exploit the vulnerability to...

Unspecified Vulnerability in Oracle WebLogic WLS Java Messaging Service Component

Oracle WebLogic server is an application server platform for building and running enterprise applications and services. An unspecified vulnerability exists in the WLS Java Messaging Service component inside Oracle WebLogic, which could be exploited by remote attackers to gain access to data, modi...

Unspecified Vulnerability in Oracle PeopleSoft SCM eProcurement Manage Requisition Status Component

Oracle PeopleSoft is a suite of enterprise human capital management solutions. An unspecified security vulnerability exists in the Oracle PeopleSoft PeopleTools PIA Core Technology component that could be exploited by remote attackers to modify data...

Solaris System Archive Utility Component Data Modification Vulnerability

Solaris is a unix-based operating system. An unspecified vulnerability in the Solaris System Archive Utility component could allow an attacker to make unauthorized changes to data information...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Marketing Preview Component

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle E-Business Suite Oracle Marketing Preview component, which allows remote attackers to exploit the vulnerability to submit special requests to access and modify...

Unspecified Vulnerability in Oracle E-Business Suite Oracle CRM Technical Foundation BIS Common Component

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle E-Business Suite Oracle CRM Technical Foundation BIS Common component, which could be exploited by remote attackers to submit a special request to modify data...

IBM WebSphere Application Server Multiple Vulnerabilities (487947)

IBM WebSphere Application Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Multiple SQL Injection Vulnerabilities in TheHostingTool

TheHostingTool is a set of open source free PHP-based hosting applications. TheHostingTool suffers from multiple SQL injection vulnerabilities. An attacker could exploit the vulnerabilities to crisis the application, access or modify data, or exploit potential security holes underlying the databa...

IBM WebSphere Process Server and Business Process Manager Advanced Incorrect SSL/TLS Handling Vulnerability

IBM WebSphere Process Server and Business Process Manager BPM Advanced are both products of IBM Corporation, U.S.A. IBM WebSphere Process Server is a set of business process automation engines; BPM is a comprehensive business process management platform. BPM Advanced is an advanced version. A...

WordPress Plugin Pinpoint Booking System SQL Injection Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platforms developed using the PHP language, which supports personal blog sites on servers running PHP and MySQL.Pinpoint Booking System is one of the plugins used to create a booking or reservation system in a WordPress site. A SQL...

WordPress Welcart plugin SQL injection vulnerability (CNVD-2015-08468)

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites on PHP and MySQL servers.Welcart is one of the plug-ins used to create shopping sites. A SQL injection vulnerability exists in WordPress Welcart...

Design/Logic Flaw

Apache HBase 0.98 before 0.98.12.1, 1.0 before 1.0.1.1, and 1.1 before 1.1.0.1, as used in IBM InfoSphere BigInsights 3.0, 3.0.0.1, and 3.0.0.2 and other products, uses incorrect ACLs for ZooKeeper coordination state, which allows remote attackers to cause a denial of service daemon outage, obtai...

CVE-2015-1836

CVE-2015-1836 affects Apache HBase as used in IBM InfoSphere BigInsights (3.0.x). The vulnerability is a logic/ACL flaw in ZooKeeper coordination state: insecure ACL handling allows a remote attacker to read/modify data or cause a denial of service by exploiting ZooKeeper access controls. IBM’s b...

WordPress Double-Opt-in-for-Download Plugin SQL Injection Vulnerability

WordPress is a suite of blogging platforms developed using the PHP language by the WordPress Software Foundation.Double-Opt-in-for-Download is one of the plugins used to build email lists and enhance customer outreach. A SQL injection vulnerability exists in the WordPress Double-Opt-in-for-Downlo...

PT-2015-2979 · Mariadb +7 · Mariadb +7

Name of the Vulnerable Software and Affected Versions: Oracle MySQL versions 5.5.46 and earlier Oracle MySQL versions 5.6.27 and earlier Oracle MySQL versions 5.7.9 and earlier MariaDB versions 5.5.47 and earlier MariaDB versions 10.0.x through 10.0.22 MariaDB versions 10.1.x through 10.1.9...

NXFilter has multiple vulnerabilities

NXFilter is a suite of DNS filtering software. NXFilter version 3.0.3 suffers from cross-site request forgery, cross-site scripting, and HTML injection vulnerabilities vulnerabilities. An attacker can exploit these vulnerabilities to execute arbitrary HTML script code in the context of an affecte...