Agile Product Lifecycle Management For Process@6.2.1.0 Security Vulnerabilities and Issues — Agile Product Lifecycle Management For Process@6.2.1.0 CVE List

Lucene search

OracleAgile Product Lifecycle Management For Process6.2.1.0

3 matches found

CVE•added 2018/01/18 11:29 p.m.•2397 views

CVE-2015-9251

jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

6.1CVSS6.3AI score0.11238EPSS

CVE•added 2019/04/20 12:29 a.m.•2193 views

CVE-2019-11358

jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable proto property, it could extend the native Object.prototype.

6.1CVSS6.4AI score0.02394EPSS

CVE•added 2018/04/19 2:29 a.m.•40 views

CVE-2018-2572

Vulnerability in the Oracle Agile Product Lifecycle Management for Process component of Oracle Supply Chain Products Suite (subcomponent: Installation). Supported versions that are affected are 6.1.1.6, 6.2.0.0 and 6.2.1.0. Easily exploitable vulnerability allows unauthenticated attacker with netwo...

6.1CVSS5.5AI score0.00524EPSS