Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
text vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2020-14734
Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Oracle Net to compromise Oracle Tex...
Oracle Text 11.2.0.4
Oracle Text 12.1.0.2
Oracle Text 12.2.0.1
Oracle Text 18c
Oracle Text 19c
3.1
CVSSv3
CVE-2021-2045
Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 18c and 19c. Difficult to exploit vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to ...
Oracle Text 12.1.0.2
Oracle Text 12.2.0.1
Oracle Text 18c
Oracle Text 19c
7.2
CVSSv3
CVE-2021-2328
Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having Create Any Procedure, Alter Any Table privilege with network access v...
Oracle Text 12.1.0.2
Oracle Text 12.2.0.1
Oracle Text 19c
8.2
CVSSv3
CVE-2018-3299
Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2 and 12.2.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Text. S...
Oracle Text 11.2.0.4
Oracle Text 12.2.0.1
Oracle Text 12.1.0.2
1 Article
8.8
CVSSv3
CVE-2023-0388
The Random Text WordPress plugin up to and including 0.3.0 does not properly sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by any authenticated users, such as subscribers.
Random Text Project Random Text
4.8
CVSSv3
CVE-2022-0737
The Text Hover WordPress plugin prior to 4.2 does not sanitize and escape the text to hover, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
Text Hover Project Text Hover
NA
CVE-2006-0439
Text Rider 2.4 stores sensitive data in the data directory under the web document root with insufficient access control, which allows remote malicious users to obtain usernames and password hashes by directly accessing data/userlist.txt.
Text Rider Text Rider 2.4
6.1
CVSSv3
CVE-2022-27860
Cross-Site Request Forgery (CSRF) leading to Cross-Site Scripting (XSS) in Shea Bunge's Footer Text plugin <= 2.0.3 on WordPress.
Footer-text Project Footer-text
NA
CVE-2006-0440
Text Rider 2.4 allows malicious users to bypass authentication and upload files without providing a valid password by obtaining the MD5 hash of the password (possibly via another vulnerability that reads it from a data file), then including the hash in a cookie.
Text Rider Text Rider 2.4
NA
CVE-2005-4498
Cross-site scripting (XSS) vulnerability in Text-e 1.6.4 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified search parameters.
Text-e Text-e Cms 1.6.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »