253 matches found
PT-2024-1211 · Oracle · Oracle Knowledge Management +1
Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.13 Description: The issue is related to insufficient input validation in the Oracle Knowledge Management product, allowing a low-privileged attacker with network access via HTTP to compromi...
PT-2024-1535 · Oracle · Oracle E-Business Suite
Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.13 Description: The issue exists due to insufficient input validation in the Setup, Admin component of the Oracle Knowledge Management system. This can allow a remote attacker to gain read,...
Oracle E-Business Suite Security Vulnerability
Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management, etc. Knowledge Management is one of the knowledge...
Yunnan ChainDrop Technology Co., Ltd.'s Siyuan Notes Software Web Application Has XSS Vulnerability
SiYuan Notes Software Web App is a privacy-first personal knowledge management system that supports full offline use as well as end-to-end encrypted synchronization. Yunnan ChainDrop Technology Co., Ltd. has an XSS vulnerability in the Siyuan Notes Software Web application, which can be exploited...
SiYuan Notes Software Web App is a privacy-first personal knowledge management system that supports full offline use as well as end-to-end encrypted synchronization. Yunnan ChainDrop Technology Co., Ltd. has an XSS vulnerability in the Siyuan Notes Software Web application, which can be exploited by attackers to obtain sensitive information such as user cookies.
Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. A code execution vulnerability exists in Apache Airflow HDFS Provider, which stems...
memos Security Vulnerabilities
memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos versions prior to 0.13.2, which stems from incorrect privilege management...
Learning Management System: What is it and Why do you need it?
By Owais Sultan More and more businesses see the value of investing in knowledge management software, which benefits both the organization… This is a post from HackRead.com Read the original post: Learning Management System: What is it and Why do you need it?...
Wjj Software InnoKB 路径遍历漏洞
Wjj Software InnoKB is a web-based collaborative multi-user knowledge management software tool from Wjj Software. A security vulnerability exists in Wjj Software InnoKB version 2.2.1, which is caused by a path traversal issue...
MediaWiki authorization error vulnerability (CNVD-2023-29701)
MediaWiki is a free and free-to-use web-based wiki engine from the MediaWiki Foundation, which can be used to deploy in-house knowledge management and content management systems. An authorization error vulnerability exists in the MediaWiki GrowthExperiments extension, which could be exploited by ...
memos 跨站脚本漏洞
memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos that stems from insufficient inspection of external resources. An attacker could exploit the vulnerability to perform a cross-site scripting attack...
Memos 跨站脚本漏洞
Memos is a Memos open source open source hosted meme center with knowledge management and social features. A cross-site scripting vulnerability exists in Memos version 0.9.1, which stems from the inclusion of a stored cross-site scripting vulnerability...
memos 安全漏洞
memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos versions prior to 0.9.1, which stems from insufficient privileges or improper handling of privileges...
memos 跨站请求伪造漏洞
memos is an open source hosted meme center with knowledge management and social features. memos suffers from a cross-site request forgery vulnerability, which can be exploited by attackers to post on behalf of victims...
memos 安全漏洞
memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos, which can be exploited by an attacker to add shortcuts to a victim's account...
memos 安全漏洞
memos is an open source hosted meme center with knowledge management and social features. A security vulnerability exists in memos, which can be exploited by an attacker to post messages in the memos page...
memos 安全漏洞
memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos, which can be exploited by an attacker to change a user's language preference...
memos 跨站脚本漏洞
memos is an open source hosted memo center with knowledge management and social features. A cross-site scripting vulnerability exists in memos, which can be exploited by an attacker to be able to steal a user's cookie...
GHSA-W57V-6XP4-RM2V usememos/memos vulnerable to account takeover due to improper access control
usememos/memos is an open-source, self-hosted memo hub with knowledge management and socialization. Versions prior to 0.9.0 improperly maintain access control allowing an attacker to take over an account by changing header values in the HTTP request...
GHSA-VWG4-846X-F94V usememos/memos vulnerable to improper authorization
usememos/memos is an open-source, self-hosted memo hub with knowledge management and socialization. Memos versions prior to 0.9.0 are vulnerable to improper authorization, which can allow a user to modify the nickname, username and email of other users without permission...
GHSA-QCW2-492V-57XJ usememos/memos missing Secure cookie attribute
usememos/memos is an open-source, self-hosted memo hub with knowledge management and socialization. Memos prior to 0.9.0 is missing the Secure cookie attribute, making it vulnerable to session hijacking...