Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

sh2kerr vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2007-6544
Multiple SQL injection vulnerabilities in RunCMS prior to 1.6.1 allow remote malicious users to execute arbitrary SQL commands via the lid parameter to (1) brokenfile.php, (2) visit.php, or (3) ratefile.php in modules/mydownloads/; or (4) ratelink.php, (5) modlink.php, or (6) bro...
Runcms Runcms 1.6
NA
CVE-2007-5508
Multiple SQL injection vulnerabilities in the CTXSYS Intermedia application for the Oracle Text component (CTX_DOC) in Oracle Database 10.1.0.5 and 10.2.0.3 allow remote authenticated users to execute arbitrary SQL commands via the (1) THEMES, (2) GIST, (3) TOKENS, (4) FILTER, (5...
Oracle Database Server 10.2.0.3Oracle Database Server 10.1.0.5
NA
CVE-2008-3979
Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 and 10.2.0.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. NOTE: the previous information was obtained from the January 2009 CPU. Oracle has not ...
Oracle Database 10g 10.2.0.2Oracle Database 10g 10.1.0.5
NA
CVE-2008-0339
Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 has unknown impact and remote attack vectors, aka DB01.
Oracle Database Server 10.2.0.3Oracle Database Server 9.2.0.8dvOracle Database Server 10.1.0.5
NA
CVE-2008-3983
Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.LT and WMSYS.LT, a different vulnerability than CVE-2008-...
Oracle Database 9i 9.2.0.8dvOracle Database 9i 9.2.0.8Oracle Database 10g 10.1.0.5Oracle Database 10g 10.2.0.3Oracle Database 11i 11.1.0.6
NA
CVE-2008-3984
Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.LT and WMSYS.LT, a different vulnerability than CVE-2008-...
Oracle Database 9i 9.2.0.8dvOracle Database 10g 10.1.0.5Oracle Database 10g 10.2.0.3Oracle Database 11i 11.1.0.6Oracle Database 9i 9.2.0.8
NA
CVE-2010-2413
Unspecified vulnerability in the BI Publisher component in Oracle Fusion Middleware 10.1.3.3.2 and 10.1.3.4.1 allows remote malicious users to affect integrity via unknown vectors.
Oracle Fusion Middleware 10.1.3.3.2Oracle Fusion Middleware 10.1.3.4.1
NA
CVE-2008-4014
Unspecified vulnerability in the Oracle BPEL Process Manager component in Oracle Application Server allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
Oracle Application Server 1.0Oracle Application Server 7.0.4.4Oracle Application Server 10.1.4.0Oracle Application Server 9.0.2.0.1Oracle Application Server 1.0.2.2Oracle Application Server 9.2.0.7Oracle Application Server 10.1.2.1Oracle Application Server 10.1.3Oracle Application Server 10.1.3.1.0Oracle Application Server 9.0.4Oracle Application Server 10.2.0.0Oracle Application Server 1.0.2.0Oracle Application Server 3.0.7Oracle Application Server 9.0.4.3Oracle Application Server 10.1.2Oracle Application Server 10.1.2.0Oracle Application Server 10.1.2.3Oracle Application Server 6.0.8.26 Ps17Oracle Application Server 9.0.2.0.0Oracle Application Server 4.0.8.2Oracle Application Server 11iOracle Application Server 10.1.3.0
NA
CVE-2009-1873
Directory traversal vulnerability in logging/logviewer.jsp in the Management Console in Adobe JRun Application Server 4 Updater 7 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the logfile parameter.
Adobe Jrun 4.0
NA
CVE-2007-5511
SQL injection vulnerability in Workspace Manager for Oracle Database before OWM 10.2.0.4.1, OWM 10.1.0.8.0, and OWM 9.2.0.8.0 allows malicious users to execute arbitrary SQL commands via the FINDRICSET procedure in the LT package. NOTE: this is probably covered by CVE-2007-5510, ...
Oracle Database Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversalCVE-2024-26978CVE-2024-26982wirelessCVE-2023-6949CVE-2024-26980CVE-2024-32766CVE-2024-26939cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook