Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2002-0559

Malware in sbrugna...

7.5CVSS6.4AI score0.00842EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2025/05/21 10:45 p.m.3 views

CVE-2000-1235

The default configurations of 1 the port listener and 2 modplsql in Oracle Internet Application Server IAS 3.0.7 and earlier allow remote attackers to view privileged database information via HTTP requests for Database Access Descriptor DAD files...

5CVSS6.3AI score0.00743EPSS
Exploits1References1
securityvulns
securityvulnsadded 2011/05/02 12:0 a.m.72 views

[ISecAuditors Security Advisories] XSS in Oracle AS Portal 10g

============================================= INTERNET SECURITY AUDITORS ALERT 2010-007 - Original release date: August 11th, 2010 - Last revised: May 1st, 2011 - Discovered by: Vicente Aguilera Diaz - Severity: 5.0/10 CVSS Base Scored ============================================= I. VULNERABILIT...

0.5AI score
Exploits0
Packet Storm
Packet Stormadded 2011/05/02 12:0 a.m.25 views

Oracle AS Portal 10.1.2 Cross Site Scripting

============================================= INTERNET SECURITY AUDITORS ALERT 2010-007 - Original release date: August 11th, 2010 - Last revised: May 1st, 2011 - Discovered by: Vicente Aguilera Diaz - Severity: 5.0/10 CVSS Base Scored ============================================= I. VULNERABILIT...

7.4AI score
Exploits0
Cvelist
Cvelistadded 2005/07/14 4:0 a.m.15 views

CVE-2000-1235

The default configurations of 1 the port listener and 2 modplsql in Oracle Internet Application Server IAS 3.0.7 and earlier allow remote attackers to view privileged database information via HTTP requests for Database Access Descriptor DAD files...

8.8AI score0.00743EPSS
Exploits1References6
NVD
NVDadded 2002/07/03 4:0 a.m.15 views

CVE-2002-0564

PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to bypass authentication for a Database Access Descriptor DAD by modifying the URL to reference an alternate DAD that already has valid credentials...

7.5CVSS6.5AI score0.00842EPSS
Exploits0References5
Cvelist
Cvelistadded 2002/06/11 4:0 a.m.22 views

CVE-2002-0564

PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to bypass authentication for a Database Access Descriptor DAD by modifying the URL to reference an alternate DAD that already has valid credentials...

9.2AI score0.00842EPSS
Exploits0References5
CERT
CERTadded 2002/03/01 12:0 a.m.18 views

Oracle9i Application Server allows unauthenticated access to PL/SQL applications via alternate Database Access Descriptor

Overview A vulnerability exists in the Apache Procedural Language/Structured Query Language PL/SQL module used by Oracle9i Application Server iAS. By specifying the Database Access Descriptor DAD used to access a PL/SQL application, an attacker could gain unauthorized access to the application...

7AI score
Exploits0References2
CERT
CERTadded 2002/02/28 12:0 a.m.32 views

Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via Database Access Descriptor password

Overview A buffer overflow vulnerability exists in the Apache Procedural Language/Structured Query Language PL/SQL module used by Oracle9i Application Server iAS. Specifying a crafted password for a Database Access Descriptor DAD could cause a denial of service or execute arbitrary code with the...

7.5CVSS9.9AI score0.3871EPSS
Exploits0References6
Rows per page
Query Builder