Lucene search
K
OracleTime And Labor

5 matches found

CVE
CVE
added 2019/08/20 8:10 p.m.951 views

CVE-2019-10086

CVE-2019-10086 affects Apache Commons BeanUtils 1.9.2, where a BeanIntrospector addition could suppress access to the classloader via the class property on Java objects. The issue stems from not applying the suppression by default in PropertyUtilsBean, enabling potential risk across affected depl...

7.5CVSS7.3AI score0.28839EPSS
CVE
CVE
added 2021/06/02 3:49 p.m.318 views

CVE-2020-6950

Summary of CVE-2020-6950 (Eclipse Mojarra Local File Read) The Nuclei template confirms a directory traversal vulnerability in Eclipse Mojarra before 2.3.14 that allows reading arbitrary files via the loc or con parameter. Affected component is Mojarra (JavaServer Faces) in versions prior to 2.3....

6.5CVSS6.7AI score0.10124EPSS
CVE
CVE
added 2019/10/02 1:58 p.m.165 views

CVE-2019-17091

CVE-2019-17091 affects Eclipse Mojarra (used in Mojarra for Eclipse EE4J) with an issue in faces/context/PartialViewContextImpl.java that allows Reflected XSS. Affected versions are Mojarra for Eclipse EE4J before 2.3.10 and Mojarra JavaServer Faces before 2.2.20. The root cause is mishandling of...

6.1CVSS6.4AI score0.02469EPSS
CVE
CVE
added 2021/04/22 9:53 p.m.70 views

CVE-2021-2239

The CVE-2021-2239 entry corresponds to a vulnerability in Oracle E-Business Suite Time and Labor (Timecard). Affected are Oracle E-Business Suite versions 12.1.1–12.1.3 and 12.2.3–12.2.10. The issue allows a low-privilege, network-accessible attacker over HTTP to compromise Time and Labor, leadin...

8.1CVSS8.1AI score0.00931EPSS
CVE
CVE
added 2021/07/20 10:44 p.m.58 views

CVE-2021-2415

CVE-2021-2415 affects Oracle E-Business Suite Time and Labor (Timecard). Affected versions are 12.1.1–12.1.3 and 12.2.3–12.2.10. The vulnerability allows a low-privilege attacker who can access over the network via HTTP to compromise Time and Labor, potentially leading to unauthorized creation, d...

8.5CVSS7.8AI score0.01491EPSS