Lucene search
+L

253 matches found

Cvelist
Cvelist
added 2021/08/10 2:7 p.m.32 views

CVE-2021-33707

SAP NetWeaver Knowledge Management allows remote attackers to redirect users to arbitrary websites and conduct phishing attacks via a URL stored in a component. This could enable the attacker to compromise the user's confidentiality and integrity...

6.1CVSS6.3AI score0.01957EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/08/10 12:0 a.m.6 views

SAP Netweaver 输入验证错误漏洞

SAP Netweaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform primarily provides a development and runtime environment for SAP applications. An input validation error vulnerability exists in SAP NetWeaver Knowledge Management, which allows...

6.1CVSS7.1AI score0.01957EPSS
Exploits0References8
CNVD
CNVD
added 2021/08/03 12:0 a.m.37 views

engineercms cross-site scripting vulnerability

engineercms is an open source engineer knowledge management system . Specifically for civil engineers to create a suitable web-based knowledge management system . It can be used to manage both individual project information , but also for managing project team information ; it can run on both...

5.4CVSS3.4AI score0.0059EPSS
Exploits1References1
CNVD
CNVD
added 2021/07/06 12:0 a.m.8 views

MediaWiki suffers from an unspecified vulnerability (CNVD-2021-48982)

MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy in-house knowledge management and content management systems. MediaWiki 1.36 suffers from a security vulnerability that stems from an issue discovered in the abusfilter...

9.8CVSS6.8AI score0.01201EPSS
Exploits1References1
CNVD
CNVD
added 2021/06/08 12:0 a.m.0 views

Command Execution Vulnerability in Digital OA (EKP) at Shenzhen Lanling Software Co.

Ltd. was founded in Shenzhen Science and Technology Park in 2001. BlueLine is a well-known large platform OA service provider and a leading knowledge management solution provider in China, and is a national high-tech enterprise specializing in knowledge-based consulting, software development,...

7.3AI score
Exploits0
CNVD
CNVD
added 2021/05/29 12:0 a.m.3 views

Information Leakage Vulnerability in WCP Knowledge Management System of Taiyuan Bianzhou Technology Co.

WCP knowledge management system is a set of BS architecture knowledge management system, knowledge base system. There is an information leakage vulnerability in the WCP knowledge management system of Taiyuan Bianzhou Technology Co., Ltd. that can be exploited by attackers to obtain sensitive...

6.6AI score
Exploits0
CNVD
CNVD
added 2021/05/17 12:0 a.m.12 views

MediaWiki suffers from an unspecified vulnerability (CNVD-2021-35233)

MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy in-house knowledge management and content management systems. A security vulnerability exists in MediaWiki version 1.35.2 and prior versions, which stems from incorrect...

5.5CVSS6.8AI score0.00576EPSS
Exploits0References1
CNVD
CNVD
added 2021/05/17 12:0 a.m.5 views

Unspecified vulnerability in MediaWiki (CNVD-2021-37744)

MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy in-house knowledge management and content management systems. A security vulnerability exists in MediaWiki version 1.35.2 and earlier versions, which stems from the fac...

6.5CVSS6.7AI score0.00693EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/05/12 12:0 a.m.9 views

The vulnerability of the Shopping Cart component of the Oracle Knowledge Management component within the Oracle E-Business Suite allows a malicious individual to access, modify, add, or delete data, as well as gain unauthorized access to protected information.

The vulnerability of the Shopping Cart component of the Oracle Knowledge Management component within the Oracle E-Business Suite involves deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, as well as gain...

8.2CVSS6.8AI score0.79936EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2021/05/11 12:0 a.m.8 views

Atlassian Confluence Server Cross-Site Scripting Vulnerability (CNVD-2021-34508)

Atlassian Confluence Server is the server version of Atlassian Australia's suite of collaboration software with enterprise knowledge management capabilities and support for building enterprise WiKi. A cross-site scripting vulnerability exists in Confluence Server versions prior to 7.11.0 that...

5.4CVSS5.9AI score0.00928EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/27 12:0 a.m.29 views

Unnamed Vulnerability in MediaWiki

MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy in-house knowledge management and content management systems. A security vulnerability exists in MediaWiki version 1.31.12 and versions prior to 1.32.x series and 1.35....

4.3CVSS6.5AI score0.01175EPSS
Exploits1References1
NVD
NVD
added 2021/04/22 10:15 p.m.15 views

CVE-2021-2198

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

8.2CVSS0.79936EPSS
Exploits0References1
OSV
OSV
added 2021/04/22 10:15 p.m.5 views

CVE-2021-2198

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

8.2CVSS6.8AI score0.79936EPSS
Exploits0References1
Prion
Prion
added 2021/04/22 10:15 p.m.17 views

Design/Logic Flaw

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

5.8CVSS8.3AI score0.79936EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/04/22 10:15 p.m.3 views

CVE-2021-2198

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

8.2CVSS6.8AI score0.79936EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2021/04/22 9:53 p.m.12 views

CVE-2021-2198

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

8.2CVSS7.3AI score0.79936EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/04/22 9:53 p.m.25 views

CVE-2021-2198

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

8.2CVSS8.5AI score0.79936EPSS
Exploits0References1
CVE
CVE
added 2021/04/22 9:53 p.m.70 views

CVE-2021-2198

Summary of CVE-2021-2198 (Oracle Knowledge Management, Oracle E-Business Suite) Reported vulnerability affects Oracle Knowledge Management within Oracle E-Business Suite variants 12.1.1–12.1.3 and 12.2.3–12.2.10, specifically the Setup/Admin components. The issue allows an unauthenticated, networ...

8.2CVSS8.1AI score0.79936EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2021/04/21 12:0 a.m.7 views

Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2021-39942)

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on, a collection of management software, is a seamless integration of a management suite. Oracle Knowledge...

8.2CVSS6.3AI score0.79936EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/21 12:0 a.m.12 views

MediaWiki cross-site scripting vulnerability (CNVD-2021-38677)

MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy in-house knowledge management and content management systems. A cross-site scripting vulnerability exists in MediaWiki versions prior to 1.31.12 and versions prior to...

6.1CVSS5.7AI score0.01406EPSS
Exploits1References1
Rows per page
Query Builder