Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle application server vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2007-2119
Cross-site scripting (XSS) vulnerability in boundary_rules.jsp in the Administration Front End for Oracle Enterprise (Ultra) Search, as used in Database Server 9.2.0.8, 10.1.0.5, and 10.2.0.2, and in Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2.0 allows remote malicious u...
Oracle Application Server 10.1.2.0.2
Oracle Database Server 9.2.0.8
Oracle Database Server 10.1.0.5
Oracle Database Server 10.2.0.2
Oracle Application Server 10.1.2.2
Oracle Application Server 9.0.4.3
668
VMScore
CVE-2007-5524
Unspecified vulnerability in the Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS09 or AS9.
Oracle Application Server 10.1.2.0.2
Oracle Application Server 10.1.2.2
Oracle Application Server 9.0.4.3
Oracle Collaboration Suite 10.1.2
890
VMScore
CVE-2007-5526
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.0.2, 10.1.2.2, and 10.1.4.1, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS11.
Oracle Application Server 10.1.2.2
Oracle Application Server 10.1.4.1
Oracle Collaboration Suite 10.1.2
Oracle Application Server 10.1.2.0.2
765
VMScore
CVE-2006-0586
Multiple SQL injection vulnerabilities in Oracle 10g Release 1 before CPU Jan 2006 allow remote malicious users to execute arbitrary SQL commands via multiple parameters in (1) ATTACH_JOB, (2) HAS_PRIVS, and (3) OPEN_JOB functions in the SYS.KUPV$FT package; and (4) UPDATE_JOB, (...
Oracle Oracle10g Personal 10.1.0.3
Oracle Application Server 10.1.2.0.2
Oracle Oracle10g Standard 10.1.0.3.1
Oracle Application Server 10.1.2.1.0
Oracle Application Server 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.4
Oracle Oracle10g Enterprise 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.3.1
Oracle Oracle10g Standard 10.1.0.2
Oracle Oracle10g Standard 10.1.0.4
Oracle Application Server 10.1.2.0.1
Oracle Oracle10g Personal 10.1.0.2
Oracle Oracle10g Standard 10.1.0.3
Oracle Oracle10g Standard 10.1.0.5
Oracle Oracle10g Personal 10.10.3.1
Oracle Application Server 10.1.0.4
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Application Server 10.1.0.2
Oracle Oracle10g Standard 10.1.0.4.2
Oracle Application Server 10.1.0.3.1
Oracle Application Server 10.1.2
Oracle Oracle10g Personal 10.1.0.4
3 EDB exploits
445
VMScore
CVE-2002-0562
The default configuration of Oracle 9i Application Server 1.0.2.x running Oracle JSP or SQLJSP stores globals.jsa under the web root, which allows remote malicious users to gain sensitive information including usernames and passwords via a direct HTTP request to globals.jsa.
Oracle Oracle9i 9.0.1
Oracle Application Server 1.0.2
Oracle Application Server Web Cache 2.0.0.0
Oracle Application Server Web Cache 2.0.0.3
Oracle Oracle9i 9.0
Oracle Application Server Web Cache 2.0.0.1
Oracle Application Server Web Cache 2.0.0.2
445
VMScore
CVE-2002-0565
Oracle 9iAS 1.0.2.x compiles JSP files in the _pages directory with world-readable permissions under the web root, which allows remote malicious users to obtain sensitive information derived from the JSP code, including usernames and passwords, via a direct HTTP request to _pages...
Oracle Application Server Web Cache 2.0.0.3
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
Oracle Application Server Web Cache 2.0.0.0
Oracle Application Server Web Cache 2.0.0.1
Oracle Application Server Web Cache 2.0.0.2
Oracle Application Server 1.0.2
668
VMScore
CVE-2007-3859
Unspecified vulnerability in the Oracle Internet Directory component for Oracle Database 9.2.0.8 and 9.2.0.8DV; Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2; and Collaboration Suite 10.1.2 has unknown impact and remote attack vectors, aka OID01.
Oracle Collaboration Suite 10.1.2
Oracle Database Server 9.2.0.8
Oracle Application Server 10.1.2.2
Oracle Application Server 9.0.4.3
Oracle Database Server 9.2.0.8dv
Oracle Application Server 10.1.2.0.2
570
VMScore
CVE-2008-2594
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.3 and 10.1.4.2 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-2593.
Oracle Oracle Application Server 10.1.2.3
Oracle Oracle Application Server 10.1.4.2
151
VMScore
CVE-2008-2619
Unspecified vulnerability in the Oracle Reports Developer component in Oracle Application Server 1.0.2.2, 9.0.4.3, and 10.1.2.2, and E-Business Suite 11.5.10.2, allows remote authenticated users to affect availability via unknown vectors.
Oracle Application Server 9.0.4.3
Oracle Application Server 10.1.2.2
Oracle Application Server 1.0.2.2
Oracle E-business Suite 11.5.10.2
641
VMScore
CVE-2004-1363
Buffer overflow in extproc in Oracle 10g allows remote malicious users to execute arbitrary code via environment variables in the library name, which are expanded after the length check is performed.
Oracle Database Server 8.1.7.4
Oracle Application Server 9.0.2.1
Oracle Application Server
Oracle Database Server 9.0.1.5
Oracle Application Server 9.0.2.0.0
Oracle E-business Suite 11.5.5
Oracle Enterprise Manager 9.0.1
Oracle Database Server 9.0.4
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle Database Server 9.2.0.4
Oracle Application Server 9.0.2.3
Oracle E-business Suite 11.5.2
Oracle Application Server 9.0.4.1
Oracle E-business Suite 11.5.7
Oracle Database Server 10.1.0.2
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.4.0
Oracle E-business Suite 11.5.1
Oracle Enterprise Manager 9
Oracle Application Server 9.0.2.2
Oracle Application Server 9.0.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »