Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
express vulnerabilities and exploits
(subscribe to this query)
4.9
CVSSv2
CVE-2020-14762
Vulnerability in the Oracle Application Express component of Oracle Database Server. The supported version that is affected is before 20.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Ora...
Oracle Application Express
4.9
CVSSv2
CVE-2020-14899
Vulnerability in the Oracle Application Express Data Reporter component of Oracle Database Server. The supported version that is affected is before 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HT...
Oracle Application Express
4.3
CVSSv2
CVE-2020-15084
In express-jwt (NPM package) up and including version 5.3.3, the algorithms entry to be specified in the configuration is not being enforced. When algorithms is not specified in the configuration, with the combination of jwks-rsa, it may lead to authorization bypass. You are affe...
Auth0 Express-jwt
3.5
CVSSv2
CVE-2020-2973
Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle ...
Oracle Application Express
3.5
CVSSv2
CVE-2020-2976
Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle ...
Oracle Application Express
4.9
CVSSv2
CVE-2020-2977
Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromise O...
Oracle Application Express
NA
CVE-2017-20160
A vulnerability was found in flitto express-param up to 0.x. It has been classified as critical. This affects an unknown part of the file lib/fetchParams.js. The manipulation leads to improper handling of extra parameters. It is possible to initiate the attack remotely. Upgrading...
Flitto Express-param
5.8
CVSSv2
CVE-2016-3448
Unspecified vulnerability in the Application Express component in Oracle Database Server prior to 5.0.4 allows remote malicious users to affect confidentiality and integrity via unknown vectors.
Oracle Application Express
5
CVSSv2
CVE-2016-3467
Unspecified vulnerability in the Application Express component in Oracle Database Server prior to 5.0.4 allows remote malicious users to affect availability via unknown vectors.
Oracle Application Express
2.1
CVSSv2
CVE-2020-13473
NCH Express Accounts 8.24 and previous versions allows local users to discover the cleartext password by reading the configuration file.
Nchsoftware Express Accounts
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »