126 matches found
EUVD-2020-22699
Malware in sbrugna...
EUVD-2011-2266
Malware in sbrugna...
EUVD-2021-28286
Malicious code in bioql PyPI...
EUVD-2025-7700
Malicious code in bioql PyPI...
EUVD-2025-2550
Malicious code in bioql PyPI...
EUVD-2024-18846
Malicious code in bioql PyPI...
MAL-2025-17359 Malicious code in com.unity.purchasing (npm)
The package com.unity.purchasing was found to contain malicious code...
Malicious code in com.unity.purchasing (npm)
The package com.unity.purchasing was found to contain malicious code...
CVE-2024-21132
Vulnerability in the Oracle Purchasing product of Oracle E-Business Suite component: Approvals. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Purchasing. Successful attacks...
CVE-2020-2906
Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft component: Supplier Change. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM...
The vulnerability of the Purchasing component in the Oracle PeopleSoft Enterprise SCM Purchasing application allows a hacker to gain read-only access to data or modify data.
The vulnerability of the Purchasing component in Oracle PeopleSoft Enterprise SCM Purchasing is related to incorrect authorization. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain read access to data or modify data using HTTP requests...
CVE-2025-21561
Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft component: Purchasing. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM...
CVE-2025-21561
Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft component: Purchasing. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM...
Oracle PeopleSoft 安全漏洞
Oracle PeopleSoft is a suite of enterprise human capital management solutions from Oracle Corporation USA. The product provides human capital management, financial management, supplier relationship management, and other functions. A security vulnerability exists in Oracle PeopleSoft's PeopleSoft...
The vulnerability of the Approvals component of the Oracle Purchasing software, which handles purchase orders, allows a hacker to gain read, modify, add, or delete access to data.
The vulnerability of the Approvals component in the Oracle Purchasing software for processing purchase orders involves insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain read, modify, add, or delete access to data...
Oracle E-Business Suite (July 2024 CPU)
The versions of Oracle E-Business Suite installed on the remote host is affected by multiple vulnerabilities as referenced in the July 2024 CPU advisory. - Vulnerability in the Oracle Trading Community product of Oracle E-Business Suite component: Party Search UI. Supported versions that are...
CVE-2024-21132
Vulnerability in the Oracle Purchasing product of Oracle E-Business Suite component: Approvals. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Purchasing. Successful attacks...
CVE-2024-21132
Vulnerability in the Oracle Purchasing product of Oracle E-Business Suite component: Approvals. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Purchasing. Successful attacks...
CVE-2024-21132
CVE-2024-21132 affects Oracle E-Business Suite Oracle Purchasing (component: Approvals) and is listed for affected 12.2.3–12.2.13. The vulnerability permits a low-privileged, network-accessible attacker (HTTP) to compromise Oracle Purchasing, with human interaction required, and could lead to una...
Cups Easy cross-site scripting vulnerability (CNVD-2024-11130)
Cups Easy is a PHP-based purchasing and inventory software that may become a full-fledged ERP in the future. Cups Easy suffers from a cross-site scripting vulnerability that stems from insufficient escaping of the currencyid parameter on the /cupseasylive/currencycreate.php page. An attacker coul...