CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Packet Storm•added 2024/08/31 12:0 a.m.•255 views

Oracle ISQLPlus SID Check

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle iSQLPlus SID Check', 'Description' = %q This module attempts to bruteforce the SID on the Oracle application server iSQLPlus login pages. ...

7.4AI score

Exploits0

Check Point Advisories•added 2009/12/14 12:0 a.m.•3 views

Oracle 10g iSQLPLus Service Heap Overflow (CVE-2004-1371)

Oracle Application Server ships with an interactive and batch query tool called SQL Plus. This tool consists of a command line utility, a Windows Graphical User Interface GUI, and a web based interface. The web based interface is called iSQL Plus, it is a front end to the SQL Plus utility. The iS...

9CVSS8.4AI score0.32439EPSS

Exploits0

OpenVAS•added 2005/11/03 12:0 a.m.•15 views

Oracle 9iAS iSQLplus XSS

The login-page of Oracle9i iSQLplus allows the injection of HTML and Javascript code via the username and password parameters. Description : The remote host is running a version of the Oracle9i 'isqlplus' CGI which is vulnerable to a cross site scripting issue. An attacker may exploit this flaw t...

0.2AI score

Exploits0References1

OpenVAS•added 2005/11/03 12:0 a.m.•27 views

Oracle 9i Application Server iSQLplus XSS Vulnerability - Active Check

The login-page of Oracle 9i Application Server AS iSQLplus allows the injection of HTML and Javascript code via the username and password parameters. SPDX-FileCopyrightText: 2004 Frank Berger Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respectiv...

5.4AI score

Exploits0References1

Packet Storm•added 2005/10/08 12:0 a.m.•22 views

oracle_isqlplus_css.txt

Cross-Site-Scripting Vulnerability in Oracle iSQLPlus Name Cross-Site-Scripting Vulnerability in Oracle iSQLPlus Systems Affected Oracle Database 9i Rel. 2 Severity Low Risk Category Cross Site Scripting CSS/XSS Vendor URL http://www.oracle.com This advisory...

7.4AI score

Exploits0

securityvulns•added 2005/10/07 12:0 a.m.•29 views

[Full-disclosure] Cross-Site-Scripting Vulnerability in Oracle iSQL*Plus

6.1AI score

Exploits0

CVE•added 2005/05/27 4:0 a.m.•52 views

CVE-2004-2115

Oracle HTTP Server 1.3.22 (based on Apache) is affected by CVE-2004-2115, a cross-site scripting (XSS) vulnerability in which remote attackers can inject and execute arbitrary script as other users via the isqlplus request’s (action, username, or password) parameters. The CVE entry cites this as ...

6.8CVSS6.2AI score0.50278EPSS

Exploits1References3Affected Software1

Cvelist•added 2005/05/27 4:0 a.m.•19 views

CVE-2004-2115

Multiple cross-site scripting XSS vulnerabilities in Oracle HTTP Server 1.3.22, based on Apache, allow remote attackers to execute arbitrary script as other users via the 1 action, 2 username, or 3 password parameters in an isqlplus request...

6.2AI score0.50278EPSS

Exploits1References3

securityvulns•added 2004/01/26 12:0 a.m.•28 views

mod_plsql crossite scripting

Crossite scripting in isqlplus...

1.6AI score

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by