Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
application express vulnerabilities and exploits
(subscribe to this query)
6
CVSSv2
CVE-2010-0076
Unspecified vulnerability in the Application Express Application Builder component in Oracle Database 3.2.1.00.10 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
Oracle Database 3.2.1.00.10
7.5
CVSSv2
CVE-2003-0532
Internet Explorer 5.01 SP3 up to and including 6.0 SP1 does not properly determine object types that are returned by web servers, which could allow remote malicious users to execute arbitrary code via an object tag with a data parameter to a malicious file hosted on a server that...
Microsoft Internet Explorer 5.0.1
Microsoft Ie 6.0
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
4.3
CVSSv2
CVE-2019-11358
jQuery prior to 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Jquery Jquery
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Drupal Drupal
Backdropcms Backdrop
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Netapp Snapcenter -
Netapp Oncommand System Manager
Redhat Cloudforms 4.7
Redhat Virtualization Manager 4.3
Oracle Service Bus 12.1.3.0.0
Oracle Primavera Unifier 16.2
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Weblogic Server 12.1.3.0.0
Oracle Service Bus 11.1.1.9.0
Oracle Jdeveloper 11.1.1.9.0
Oracle Primavera Unifier 16.1
98 Github repositories
4.3
CVSSv2
CVE-2010-0892
Unspecified vulnerability in the Application Express component in Oracle Database Server 3.2.0.00.27 allows remote malicious users to affect integrity via unknown vectors.
Oracle Database Server 3.2.0.00.27
5
CVSSv2
CVE-2013-1519
Unspecified vulnerability in the Application Express component in Oracle Database Server prior to 4.2.1 allows remote malicious users to affect integrity via unknown vectors.
Oracle Database Server 4.2.1
4.3
CVSSv2
CVE-2015-2586
Unspecified vulnerability in the Application Express component in Oracle Database Server prior to 4.2.1 allows remote malicious users to affect availability via unknown vectors.
Oracle Database Server
6.4
CVSSv2
CVE-2008-0895
BEA WebLogic Server and WebLogic Express 6.1 up to and including 10.0 allows remote malicious users to bypass authentication for application servlets via crafted request headers.
Bea Weblogic Server 6.1
Bea Weblogic Server 7.0
Bea Weblogic Server 8.1
Bea Weblogic Server 9.0
Bea Weblogic Server 10.0
Bea Weblogic Server 9.1
Bea Weblogic Server 9.2
4.3
CVSSv2
CVE-2012-1708
Unspecified vulnerability in the Application Express component in Oracle Database Server 4.0 and 4.1 allows remote malicious users to affect integrity via unknown vectors.
Oracle Database Server 4.0
Oracle Database Server 4.1
2.1
CVSSv2
CVE-2015-2585
Unspecified vulnerability in the Application Express component in Oracle Database Server prior to 5.0 allows remote authenticated users to affect availability via unknown vectors.
Oracle Database Server
5.5
CVSSv2
CVE-2009-1993
Unspecified vulnerability in the Application Express component in Oracle Database 3.0.1 allows remote authenticated users to affect confidentiality and integrity, related to FLOWS_030000.WWV_EXECUTE_IMMEDIATE.
Oracle Database Server 3.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »