253 matches found
SRC-2016-0024 : Oracle Knowledge Management Castor Library XML External Entity Injection Information Disclosure Vulnerability
Vulnerability Details: This vulnerability allows remote attackers to disclose arbitrary file contents on vulnerable installations of Oracle Knowledge Management. Authentication is not required to exploit this vulnerability. The specific flaw exists within the TestClient.jsp script using the...
AskMe Pro 2.1 (que_id) SQL Injection Vulnerability
No description provided by source. / / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID...
Ganesha Digital Library 4.0 Multiple Vulnerabilities
===================================================== Ganesha Digital Library 4.0 Multiple Vulnerabilities ===================================================== :---------------------------------------------------------------------------------------------------------------------------------------...
Ganesha Digital Library 4.0 Multiple Vulnerabilities
Exploit for php platform in category web applications ===================================================== Ganesha Digital Library 4.0 Multiple Vulnerabilities =====================================================...
SAP TesContainerAdmin service - Stored XSS
Application: SAP Cfolders included in: SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms Vendor URL: Bugs: Multiple Stored XSS Risk: High Exploits: YES Reported: 13.05.2011 Vendor response: 14.05.2011 Date of Public Advisory: 20.01.2012 Reference: SAP Security Note 1591749...
PR10-13: Multiple XSS and Authentication flaws within BMC Remedy Knowledge Management
PR10-13: Multiple XSS and Authentication flaws within BMC Remedy Knowledge Management Vulnerability found: 17th July 2010 Vendor informed: Vulnerability fixed: Severity: High Description: BMC Remedy Knowledge Management provides service desk analysts with a knowledge base of easy-to-find solution...
BMC Remedy Knowledge Management 7.5.00 - Default Account Multiple Cross-Site Scripting Vulnerabilities
BMC Remedy Knowledge Management 7.5.00 - Default Account Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/47728/info BMC Remedy Knowledge Management is prone to a default-account vulnerability and multiple cross-site scripting vulnerabilities because it fail...
BMC Dashboards 7.6.01 XSS / File Reading
PR10-18: Multiple XSS Cross Site Scripting and arbitrary file reading flaws within BMC Dashboards by BMC Vulnerability found: 1st Oct 2010 Vendor informed: Vulnerability fixed: Severity: High Description: BMC Dashboards provides service desk analysts with a dashboard view of aggregated performanc...
BMC Remedy Knowledge Management 7.5.00 - Default Account / Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/47728/info BMC Remedy Knowledge Management is prone to a default-account vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Attackers can leverage the default account issue to bypa...
Novo Knowledge Management Persistent / Non-Persistent Xss Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
CVE-2010-0836
CVE-2010-0836 affects Oracle Knowledge Management in Oracle E-Business Suite (11.5.10.2, 12.0.6, 12.1.2). The vulnerability is reachable over HTTP without authentication, with an impact to integrity (partial) and no impact on confidentiality or availability per the CVSS data. The Oracle CPU July ...
Alstrasoft AskMe Pro 2.1 - 'que_id' SQL Injection
/ / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID ----------------------------------------------------------------------- AskMe Pro...
SAP Cfolders Multiple Stored XSS Vulnerabilies
Digital Security Research Group DSecRG Advisory DSECRG-09-014 Original advisory: http://dsecrg.com/pages/vul/show.php?id=114 Application: SAP Cfolders included in: SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms Vendor URL: http://SAP.com Bugs: Multiple Stored XSS Risk: Hight...