44 matches found
CVE-2022-4822
A vulnerability, which was classified as problematic, has been found in FlatPress. This issue affects some unknown processing of the file setup/lib/main.lib.php of the component Setup. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of the patch is...
CVE-2022-4822
A vulnerability, which was classified as problematic, has been found in FlatPress. This issue affects some unknown processing of the file setup/lib/main.lib.php of the component Setup. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of the patch is...
Cross site scripting
A vulnerability, which was classified as problematic, has been found in FlatPress. This issue affects some unknown processing of the file setup/lib/main.lib.php of the component Setup. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of the patch is...
PT-2022-28124 · Flatpress · Flatpress
Name of the Vulnerable Software and Affected Versions: FlatPress affected versions not specified Description: A problematic issue has been found in FlatPress, affecting some unknown processing of the file setup/lib/main.lib.php of the component Setup. The manipulation leads to cross site scriptin...
CVE-2021-2233
Vulnerability in the Oracle Enterprise Asset Management product of Oracle E-Business Suite component: Setup. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
Oracle E-Business Suite 安全漏洞
Oracle E-Business Suite is in the original Application ERP based on the expansion, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on a variety of management software collection, is a seamless integration of a management...
The vulnerability of the Setup component in mobile applications of Oracle CRM Gateway for Mobile Devices allows a perpetrator to gain unauthorized access to protected information or to modify, add, or delete data.
The vulnerability of the Setup component in mobile applications belonging to the Oracle CRM Gateway for Mobile Devices is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the Setup component in mobile applications of Oracle CRM Gateway for Mobile Devices allows a perpetrator to gain unauthorized access to protected information or to modify, add, or delete data.
The vulnerability of the Setup component in mobile applications belonging to the Oracle CRM Gateway for Mobile Devices is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the Setup component in mobile applications of Oracle CRM Gateway for Mobile Devices allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Setup component in mobile applications of the Oracle CRM Gateway for Mobile Devices relates to the lack of protection for sensitive data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using th...
The vulnerability of the Setup and Admin components of the Oracle Knowledge Management application allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Setup and Admin components of the Oracle Knowledge Management application is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information using the HTTP network...
The vulnerability of the Setup and Admin components of Oracle Knowledge Management, a business automation system from Oracle E-Business Suite, allows an attacker to access, modify, add, or delete data.
The vulnerability of the Setup and Admin components of Oracle Knowledge Management, a system for automating business activities within the Oracle E-Business Suite, is related to lack of access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to...
EMC RSA Authentication Manager < 8.4 Relative Path Traversal (DSA-2018-226)
The version of EMC RSA Authentication Manager running on the remote host is prior to 8.4. It is, therefore, affected by a relative path traversal vulnerability in the Quick Setup component. An attacker could provide an administrator with a maliciously crafted license file to be used during the...
CVE-2018-15782
The Quick Setup component of RSA Authentication Manager versions prior to 8.4 is vulnerable to a relative path traversal vulnerability. A local attacker could potentially provide an administrator with a crafted license that if used during the quick setup deployment of the initial RSA Authenticati...
ILIAS < 5.2.4 XSS Vulnerability
ILIAS eLearning is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
ILIAS CMS 5.2.3 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Cross Site Scripting in ILIAS CMS 5.2.3 Date: Apr 24, 2017 Software Link: https://www.ilias.de Exploit Author: Florian Kunushevci Contact: https://facebook.com/florianx00 CVE: CVE-2018-5688 Category: webapps 1. Description ILIAS...
ILIAS 5.2.4 - Cross-Site Scripting
ILIAS 5.2.4 - Cross-Site Scripting Exploit Title: Cross Site Scripting in ILIAS CMS 5.2.3 Date: Apr 24, 2017 Software Link: https://www.ilias.de Exploit Author: Florian Kunushevci Contact: https://facebook.com/florianx00 CVE: CVE-2018-5688 Category: webapps 1. Description ILIAS before 5.2.4 has X...
ILIAS < 5.2.4 - Cross-Site Scripting
Exploit Title: Cross Site Scripting in ILIAS CMS 5.2.3 Date: Apr 24, 2017 Software Link: https://www.ilias.de Exploit Author: Florian Kunushevci Contact: https://facebook.com/florianx00 CVE: CVE-2018-5688 Category: webapps 1. Description ILIAS before 5.2.4 has XSS via the cmd parameter to the...
Design/Logic Flaw
ILIAS before 5.2.4 has XSS via the cmd parameter to the displayHeader function in setup/classes/class.ilSetupGUI.php in the Setup component...
CVE-2018-5688
ILIAS before 5.2.4 has XSS via the cmd parameter to the displayHeader function in setup/classes/class.ilSetupGUI.php in the Setup component...
CVE-2018-5688
ILIAS before 5.2.4 has XSS via the cmd parameter to the displayHeader function in setup/classes/class.ilSetupGUI.php in the Setup component...