Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle application server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0286
Unspecified vulnerability in the Oracle HTTP Server component of Oracle Database Server 9.0.1.5, 9.0.1.5 FIPS, 9.2.0.7, and 10.1.0.5, and Application Server 1.0.2.2, 9.0.4.2, and 10.1.2.0.2, has unspecified impact and attack vectors, as identified by Oracle Vuln# OHS01.
Oracle Application Server 10.1.2.0.2
Oracle Application Server 9.0.4.2
Oracle Database Server 9.0.1.5
Oracle Database Server 9.2.0.7
Oracle Database Server 10.1.0.5
Oracle Application Server 1.0.2.2
NA
CVE-2007-5526
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.0.2, 10.1.2.2, and 10.1.4.1, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS11.
Oracle Application Server 10.1.2.2
Oracle Application Server 10.1.4.1
Oracle Collaboration Suite 10.1.2
Oracle Application Server 10.1.2.0.2
NA
CVE-2007-5524
Unspecified vulnerability in the Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS09 or AS9.
Oracle Application Server 10.1.2.0.2
Oracle Application Server 10.1.2.2
Oracle Application Server 9.0.4.3
Oracle Collaboration Suite 10.1.2
NA
CVE-2002-0562
The default configuration of Oracle 9i Application Server 1.0.2.x running Oracle JSP or SQLJSP stores globals.jsa under the web root, which allows remote malicious users to gain sensitive information including usernames and passwords via a direct HTTP request to globals.jsa.
Oracle Oracle9i 9.0.1
Oracle Application Server 1.0.2
Oracle Application Server Web Cache 2.0.0.0
Oracle Application Server Web Cache 2.0.0.3
Oracle Oracle9i 9.0
Oracle Application Server Web Cache 2.0.0.1
Oracle Application Server Web Cache 2.0.0.2
NA
CVE-2002-0565
Oracle 9iAS 1.0.2.x compiles JSP files in the _pages directory with world-readable permissions under the web root, which allows remote malicious users to obtain sensitive information derived from the JSP code, including usernames and passwords, via a direct HTTP request to _pages...
Oracle Application Server Web Cache 2.0.0.3
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
Oracle Application Server Web Cache 2.0.0.0
Oracle Application Server Web Cache 2.0.0.1
Oracle Application Server Web Cache 2.0.0.2
Oracle Application Server 1.0.2
NA
CVE-2006-0586
Multiple SQL injection vulnerabilities in Oracle 10g Release 1 before CPU Jan 2006 allow remote malicious users to execute arbitrary SQL commands via multiple parameters in (1) ATTACH_JOB, (2) HAS_PRIVS, and (3) OPEN_JOB functions in the SYS.KUPV$FT package; and (4) UPDATE_JOB, (...
Oracle Oracle10g Personal 10.1.0.3
Oracle Application Server 10.1.2.0.2
Oracle Oracle10g Standard 10.1.0.3.1
Oracle Application Server 10.1.2.1.0
Oracle Application Server 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.4
Oracle Oracle10g Enterprise 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.3.1
Oracle Oracle10g Standard 10.1.0.2
Oracle Oracle10g Standard 10.1.0.4
Oracle Application Server 10.1.2.0.1
Oracle Oracle10g Personal 10.1.0.2
Oracle Oracle10g Standard 10.1.0.3
Oracle Oracle10g Standard 10.1.0.5
Oracle Oracle10g Personal 10.10.3.1
Oracle Application Server 10.1.0.4
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Application Server 10.1.0.2
Oracle Oracle10g Standard 10.1.0.4.2
Oracle Application Server 10.1.0.3.1
Oracle Application Server 10.1.2
Oracle Oracle10g Personal 10.1.0.4
3 EDB exploits
NA
CVE-2007-3859
Unspecified vulnerability in the Oracle Internet Directory component for Oracle Database 9.2.0.8 and 9.2.0.8DV; Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2; and Collaboration Suite 10.1.2 has unknown impact and remote attack vectors, aka OID01.
Oracle Collaboration Suite 10.1.2
Oracle Database Server 9.2.0.8
Oracle Application Server 10.1.2.2
Oracle Application Server 9.0.4.3
Oracle Database Server 9.2.0.8dv
Oracle Application Server 10.1.2.0.2
NA
CVE-2008-2594
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.3 and 10.1.4.2 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-2593.
Oracle Oracle Application Server 10.1.2.3
Oracle Oracle Application Server 10.1.4.2
NA
CVE-2008-2619
Unspecified vulnerability in the Oracle Reports Developer component in Oracle Application Server 1.0.2.2, 9.0.4.3, and 10.1.2.2, and E-Business Suite 11.5.10.2, allows remote authenticated users to affect availability via unknown vectors.
Oracle Application Server 9.0.4.3
Oracle Application Server 10.1.2.2
Oracle Application Server 1.0.2.2
Oracle E-business Suite 11.5.10.2
9.8
CVSSv3
CVE-2004-1363
Buffer overflow in extproc in Oracle 10g allows remote malicious users to execute arbitrary code via environment variables in the library name, which are expanded after the length check is performed.
Oracle Database Server 8.1.7.4
Oracle Application Server 9.0.2.1
Oracle Application Server
Oracle Database Server 9.0.1.5
Oracle Application Server 9.0.2.0.0
Oracle E-business Suite 11.5.5
Oracle Enterprise Manager 9.0.1
Oracle Database Server 9.0.4
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle Database Server 9.2.0.4
Oracle Application Server 9.0.2.3
Oracle E-business Suite 11.5.2
Oracle Application Server 9.0.4.1
Oracle E-business Suite 11.5.7
Oracle Database Server 10.1.0.2
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.4.0
Oracle E-business Suite 11.5.1
Oracle Enterprise Manager 9
Oracle Application Server 9.0.2.2
Oracle Application Server 9.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »