253 matches found
CVE-2021-33707
SAP NetWeaver Knowledge Management allows remote attackers to redirect users to arbitrary websites and conduct phishing attacks via a URL stored in a component. This could enable the attacker to compromise the user's confidentiality and integrity...
SAP Netweaver 输入验证错误漏洞
SAP Netweaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform primarily provides a development and runtime environment for SAP applications. An input validation error vulnerability exists in SAP NetWeaver Knowledge Management, which allows...
engineercms cross-site scripting vulnerability
engineercms is an open source engineer knowledge management system . Specifically for civil engineers to create a suitable web-based knowledge management system . It can be used to manage both individual project information , but also for managing project team information ; it can run on both...
MediaWiki suffers from an unspecified vulnerability (CNVD-2021-48982)
MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy in-house knowledge management and content management systems. MediaWiki 1.36 suffers from a security vulnerability that stems from an issue discovered in the abusfilter...
Command Execution Vulnerability in Digital OA (EKP) at Shenzhen Lanling Software Co.
Ltd. was founded in Shenzhen Science and Technology Park in 2001. BlueLine is a well-known large platform OA service provider and a leading knowledge management solution provider in China, and is a national high-tech enterprise specializing in knowledge-based consulting, software development,...
Information Leakage Vulnerability in WCP Knowledge Management System of Taiyuan Bianzhou Technology Co.
WCP knowledge management system is a set of BS architecture knowledge management system, knowledge base system. There is an information leakage vulnerability in the WCP knowledge management system of Taiyuan Bianzhou Technology Co., Ltd. that can be exploited by attackers to obtain sensitive...
MediaWiki suffers from an unspecified vulnerability (CNVD-2021-35233)
MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy in-house knowledge management and content management systems. A security vulnerability exists in MediaWiki version 1.35.2 and prior versions, which stems from incorrect...
Unspecified vulnerability in MediaWiki (CNVD-2021-37744)
MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy in-house knowledge management and content management systems. A security vulnerability exists in MediaWiki version 1.35.2 and earlier versions, which stems from the fac...
The vulnerability of the Shopping Cart component of the Oracle Knowledge Management component within the Oracle E-Business Suite allows a malicious individual to access, modify, add, or delete data, as well as gain unauthorized access to protected information.
The vulnerability of the Shopping Cart component of the Oracle Knowledge Management component within the Oracle E-Business Suite involves deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, as well as gain...
Atlassian Confluence Server Cross-Site Scripting Vulnerability (CNVD-2021-34508)
Atlassian Confluence Server is the server version of Atlassian Australia's suite of collaboration software with enterprise knowledge management capabilities and support for building enterprise WiKi. A cross-site scripting vulnerability exists in Confluence Server versions prior to 7.11.0 that...
Unnamed Vulnerability in MediaWiki
MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy in-house knowledge management and content management systems. A security vulnerability exists in MediaWiki version 1.31.12 and versions prior to 1.32.x series and 1.35....
CVE-2021-2198
Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...
CVE-2021-2198
Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...
Design/Logic Flaw
Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...
CVE-2021-2198
Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...
CVE-2021-2198
Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...
CVE-2021-2198
Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...
CVE-2021-2198
Summary of CVE-2021-2198 (Oracle Knowledge Management, Oracle E-Business Suite) Reported vulnerability affects Oracle Knowledge Management within Oracle E-Business Suite variants 12.1.1–12.1.3 and 12.2.3–12.2.10, specifically the Setup/Admin components. The issue allows an unauthenticated, networ...
Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2021-39942)
Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on, a collection of management software, is a seamless integration of a management suite. Oracle Knowledge...
MediaWiki cross-site scripting vulnerability (CNVD-2021-38677)
MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy in-house knowledge management and content management systems. A cross-site scripting vulnerability exists in MediaWiki versions prior to 1.31.12 and versions prior to...