CVE-2026-3325

SQL injection SQLi in MegaCMS v12.0.0, specifically in the “idterritorio” parameter of the “/webcomunications/cms/getprovincias” endpoint. The vulnerability arises from inadequate validation and sanitisation of user input. Specifically, via a POST request, the “idterritorio” parameter, used...

CVE-2019-2662

Vulnerability in the Oracle Territory Management component of Oracle E-Business Suite subcomponent: Territory Administration. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated...

EUVD-2019-12302

Malware in sbrugna...

EUVD-2010-2428

Malware in sbrugna...

CVE-2025-54832 OPEXUS FOIAXpress Public Access Link (PAL) state and territory list unauthorized modification

OPEXUS FOIAXpress Public Access Link PAL, version v11.1.0, allows an authenticated user to add entries to the list of states and territories...

CVE-2025-54832

Vulnerability summary (CVE-2025-54832) : In OPEXUS FOIAXpress Public Access Link (PAL) v11.1.0, an authenticated user can modify the list of states and territories. The issue is tied to PAL’s handling of authorized content changes; the core cause is not explicitly detailed in the provided documen...

Service Update 0.16 for Microsoft Dynamics 365 9.0

Service Update 0.16 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.16 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.16. MORE INFORMATION Update package| Version number ---|---...

CVE-2019-2662

Vulnerability in the Oracle Territory Management component of Oracle E-Business Suite subcomponent: Territory Administration. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated...

CVE-2019-2662

Vulnerability in the Oracle Territory Management component of Oracle E-Business Suite subcomponent: Territory Administration. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated...

Design/Logic Flaw

Vulnerability in the Oracle Territory Management component of Oracle E-Business Suite subcomponent: Territory Administration. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated...

CVE-2019-2662

CVE-2019-2662 affects Oracle E-Business Suite, Territory Management (Territory Administration). Affected versions include 12.1.1–12.1.3 and 12.2.3–12.2.8. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Territory Management, with human interaction r...

CVE-2019-2662

Vulnerability in the Oracle Territory Management component of Oracle E-Business Suite subcomponent: Territory Administration. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated...

CVE-2019-2662

Vulnerability in the Oracle Territory Management component of Oracle E-Business Suite subcomponent: Territory Administration. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7 and 12.2.8. Easily exploitable vulnerability allows unauthenticated...

Oracle E-Business Suite Territory Management Component Access Control Error Vulnerability

Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management and other functions.Territory Management is one of th...

Google Removes .CO.CC Subdomains Over Phishing, Spam Concerns

In a rare and sweeping move, Google has removed all of the sites hosted on .co.cc domains from its search results, saying that because such a large percentage of the sites on that freehosting provider are low-quality or spammy, they decided to de-index all of them. The .co.cc domain is well-known...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Territory Management component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect integrity via unknown vectors...

CVE-2010-2418

CVE-2010-2418 affects Oracle E-Business Suite Territory Management (11.5.10.2, 12.0.6, 12.1.3). The exposure is via HTTP and can be exploited remotely without authentication; CVSS v2 base score 4.3 (Medium) with partial integrity impact. Root cause details are not disclosed in the provided docume...

id Software id Tech 4 Engine - 'idGameLocal::GetGameStateObject()' Remote Code Execution

source: https://www.securityfocus.com/bid/41001/info id Tech 4 Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service conditio...

id Software id Tech 4 Engine - idGameLocal::GetGameStateObject() Remote Code Execution

id Software id Tech 4 Engine - idGameLocal::GetGameStateObject Remote Code Execution source: https://www.securityfocus.com/bid/41001/info id Tech 4 Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the...

id Software id Tech 4 Engine - 'key' Packet Remote Code Execution

source: https://www.securityfocus.com/bid/41460/info id Tech 4 Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service conditio...