Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle application server portal 10g vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-6697
CRLF injection vulnerability in webapp/jsp/calendar.jsp in Oracle Portal 10g and previous versions, including 9.0.2, allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the enc parameter.
Oracle Application Server Portal 10g
Oracle Application Server Portal 9.0.2
1 EDB exploit
7.5
CVSSv2
CVE-2006-0552
Unspecified vulnerability in the Net Listener component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, and 9.2.0.7 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB11.
Oracle Oracle10g Standard 10.2.0.1
Oracle Oracle10g Personal 10.1.0.3
Oracle Application Server 10.1.2.0.2
Oracle Enterpriseone 8.95.f1
Oracle Oracle8i Standard 8.1.7.4
Oracle Developer Suite 9.0.4.1
Oracle Collaboration Suite Release 1
Oracle Database Server 8.1.7.4
Oracle 10g Enterprise Manager Grid Control 10.1 .0.3
Oracle Peoplesoft Enterprise Portal 8.8
Oracle Application Server 10.1.2.1.0
Oracle E-business Suite 11.5.5
Oracle Developer Suite 9.0.2.1
Oracle Collaboration Suite 10.1.2
Oracle Oracle8i Standard 8.0.6
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle Collaboration Suite 10.1.1
Oracle Oracle10g Enterprise 10.1.0.4
Oracle Oracle10g Enterprise 10.1.0.3
Oracle Oracle9i Enterprise 9.0.1.5
Oracle E-business Suite 11.5.2
5
CVSSv2
CVE-2008-2138
Oracle Application Server (OracleAS) Portal 10g allows remote malicious users to bypass intended access restrictions and read the contents of /dav_portal/portal/ by sending a request containing a trailing "%0A" (encoded line feed), then using the session ID that is gene...
Oracle Application Server Portal 10g
1 EDB exploit
4.3
CVSSv2
CVE-2007-1506
Cross-site scripting (XSS) vulnerability in PORTAL.wwv_main.render_warning_screen in the Oracle Portal 10g allows remote malicious users to inject arbitrary web script or HTML via the (1) p_oldurl and (2) p_newurl parameters.
Oracle Application Server Portal
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started