Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opera vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-9987
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in Safari 14.0. Visiting a malicious website may lead to address bar spoofing.
Apple Safari
1 Article
2.1
CVSSv2
CVE-2020-17521
Apache Groovy provides extension methods to aid with creating temporary directories. Prior to this fix, Groovy's implementation of those extension methods was using a now superseded Java JDK method call that is potentially not secure on some operating systems in some context...
Apache Groovy 4.0.0
Apache Groovy
Netapp Snapcenter -
Oracle Primavera Unifier 16.2
Oracle Primavera Unifier 16.1
Oracle Ilearning 6.2
Oracle Business Process Management Suite 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Primavera Unifier
Oracle Agile Plm 9.3.3
Oracle Agile Plm 9.3.6
Oracle Primavera Unifier 19.12
Oracle Retail Bulk Data Integration 15.0.3.0
Oracle Retail Bulk Data Integration 16.0.3.0
Oracle Communications Services Gatekeeper 7.0
Oracle Retail Merchandising System 16.0.3
Oracle Communications Evolved Communications Application Server 7.1
Oracle Agile Engineering Data Management 6.2.1.0
Oracle Primavera Unifier 20.12
Oracle Business Process Management Suite 12.2.1.4.0
Oracle Communications Services Gatekeeper 6.0
Oracle Communications Services Gatekeeper 6.1
4.3
CVSSv2
CVE-2020-6157
Opera Touch for iOS before version 2.4.5 is vulnerable to an address bar spoofing attack. The vulnerability allows a malicious page to trick the browser into showing an address of a different page. This may allow the malicious page to impersonate another page and trick a user int...
Opera Opera Touch
5
CVSSv2
CVE-2019-17566
Apache Batik is vulnerable to server-side request forgery, caused by improper input validation by the "xlink:href" attributes. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET reques...
Apache Batik
Oracle Api Gateway 11.1.2.4.0
Oracle Hyperion Financial Reporting 11.1.2.4
Oracle Enterprise Repository 11.1.1.7.0
Oracle Business Intelligence 12.2.1.3.0
Oracle Retail Order Broker 15.0
Oracle Retail Order Broker 16.0
Oracle Retail Returns Management 14.1
Oracle Retail Point-of-service 14.1
Oracle Business Intelligence 12.2.1.4.0
Oracle Business Intelligence 5.5.0.0.0
Oracle Financial Services Analytical Applications Infrastructure
Oracle Fusion Middleware Mapviewer 12.2.1.4.0
Oracle Instantis Enterprisetrack
Oracle Communications Offline Mediation Controller 12.0.0.3.0
Oracle Retail Integration Bus 15.0.3
Oracle Communications Application Session Controller 3.9m0p2
Oracle Hospitality Opera 5 5.5
Oracle Hospitality Opera 5 5.6
Oracle Business Intelligence 5.9.0.0.0
Oracle Retail Order Management System Cloud Service 19.5
Oracle Jd Edwards Enterpriseone Tools
1 Github repository
8.5
CVSSv2
CVE-2020-14858
Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: Logging). Supported versions that are affected are 5.5 and 5.6. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP t...
Oracle Hospitality Opera 5 Property Services 5.5
Oracle Hospitality Opera 5 Property Services 5.6
7.5
CVSSv2
CVE-2020-14877
Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: Logging). Supported versions that are affected are 5.5 and 5.6. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP t...
Oracle Hospitality Opera 5 Property Services 5.5
Oracle Hospitality Opera 5 Property Services 5.6
4.3
CVSSv2
CVE-2020-7371
User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an malicious user to obfuscate the true source of data as presented in the browser. This issue affects the RITS Browser version 3.3.9 and prior versions.
Raiseitsolutions Rits Browser
1 Article
4.3
CVSSv2
CVE-2020-7363
User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an malicious user to obfuscate the true source of data as presented in the browser. This issue affects UCWeb's UC Browser version 13.0.8 and prior...
Ucweb Uc Browser
1 Article
4.3
CVSSv2
CVE-2020-7369
User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an malicious user to obfuscate the true source of data as presented in the browser. This issue affects the Yandex Browser version 20.8.3 and prior versions,...
Yandex Yandex Browser
1 Article
7.5
CVSSv2
CVE-2018-1285
Apache log4net versions prior to 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.
Apache Log4net
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Oracle Application Testing Suite 13.3.0.1
Oracle Hospitality Simphony 19.1.3
Oracle Hospitality Simphony 18.2.7.2
Oracle Hospitality Opera 5 5.5
Oracle Hospitality Opera 5 5.6
Netapp Snapcenter -
Netapp Manageability Software Development Kit -
4 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »