Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle data integrator 12.2.1.4.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-9019
SQL Injection vulnerability in Dolibarr before version 7.0.2 allows remote malicious users to execute arbitrary SQL commands via the sortfield parameter to /accountancy/admin/accountmodel.php, /accountancy/admin/categories_list.php, /accountancy/admin/journals_list.php, /admin/di...
Dolibarr Dolibarr
Oracle Data Integrator 11.1.1.9.0
Oracle Data Integrator 12.2.1.3.0
Oracle Data Integrator 12.2.1.4.0
7.5
CVSSv2
CVE-2018-7318
SQL Injection exists in the CheckList 1.1.1 component for Joomla! via the title_search, tag_search, name_search, description_search, or filter_order parameter.
Belitsoft Checklist 1.1.1
Oracle Data Integrator 11.1.1.9.0
Oracle Data Integrator 12.2.1.3.0
Oracle Data Integrator 12.2.1.4.0
1 EDB exploit
7.5
CVSSv2
CVE-2015-8965
Rogue Wave JViews prior to 8.8 patch 21 and 8.9 before patch 1 allows remote malicious users to execute arbitrary Java code that exists in the classpath, such as test code or administration code. The issue exists because the ilog.views.faces.IlvFacesController servlet in jviews-f...
Perforce Jviews
Perforce Jviews 8.9
Oracle Data Integrator 12.2.1.3.0
Oracle Data Integrator 12.2.1.4.0
1 Article
5.8
CVSSv2
CVE-2021-2015
Vulnerability in the Oracle Workflow product of Oracle E-Business Suite (component: Worklist). Supported versions that are affected are 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Workflow. Suc...
Oracle Data Integrator 12.2.1.3.0
Oracle Data Integrator 12.2.1.4.0
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Workflow
7.5
CVSSv2
CVE-2017-5611
SQL injection vulnerability in wp-includes/class-wp-query.php in WP_Query in WordPress prior to 4.7.2 allows remote malicious users to execute arbitrary SQL commands by leveraging the presence of an affected plugin or theme that mishandles a crafted post type name.
Wordpress Wordpress
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Oracle Data Integrator 11.1.1.9.0
Oracle Data Integrator 12.2.1.3.0
Oracle Data Integrator 12.2.1.4.0
1 Github repository
5.1
CVSSv2
CVE-2021-2018
Vulnerability in the Advanced Networking Option component of Oracle Database Server. Supported versions that are affected are 18c and 19c. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Oracle Net to compromise Advanced Networking Optio...
Oracle Advanced Networking Option 18c
Oracle Advanced Networking Option 19c
Oracle Adaptive Access Manager 11.1.2.3.0
Oracle Data Integrator 11.1.1.9.0
Oracle Data Integrator 12.2.1.3.0
Oracle Data Integrator 12.2.1.4.0
Oracle Enterprise Manager For Fusion Applications 13.3.0.0
Oracle Hospitality Simphony 18.2.7.2
Oracle Hospitality Simphony 19.1.3
Oracle Weblogic Server 12.2.1.3.0
6.8
CVSSv2
CVE-2019-17195
Connect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, which could result in an application crash (potential information disclosure) or a potential authentication bypass.
Connect2id Nimbus Jose+jwt
Apache Hadoop 3.2.1
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Communications Pricing Design Center 12.0.0.3.0
Oracle Data Integrator 12.2.1.4.0
Oracle Enterprise Manager Base Platform 13.4.0.0
Oracle Healthcare Data Repository 8.1.0
Oracle Insurance Policy Administration
Oracle Jd Edwards Enterpriseone Orchestrator
Oracle Jd Edwards Enterpriseone Tools
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
5
CVSSv2
CVE-2020-13956
Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.
Apache Httpclient
Quarkus Quarkus
Oracle Data Integrator 12.2.1.3.0
Oracle Data Integrator 12.2.1.4.0
Oracle Jd Edwards Enterpriseone Orchestrator
Oracle Jd Edwards Enterpriseone Tools
Oracle Nosql Database
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Pt Peopletools 8.57
Oracle Peoplesoft Enterprise Pt Peopletools 8.58
Oracle Peoplesoft Enterprise Pt Peopletools 8.59
4 Github repositories
2.1
CVSSv2
CVE-2020-8908
A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava API com.google.common.io.Files.createTempDir(). By default, on unix-like systems, the ...
Google Guava
Quarkus Quarkus
Oracle Commerce Guided Search 11.3.2
Oracle Communications Cloud Native Core Network Slice Selection Function 1.2.1
Oracle Communications Pricing Design Center 12.0.0.4.0
Oracle Communications Pricing Design Center 12.0.0.5.0
Oracle Data Integrator 12.2.1.3.0
Oracle Data Integrator 12.2.1.4.0
Oracle Nosql Database
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
4 Github repositories
5
CVSSv2
CVE-2019-10246
In Eclipse Jetty version 9.2.27, 9.3.26, and 9.4.16, the server running on Windows is vulnerable to exposure of the fully qualified Base Resource directory name on Windows to a remote client when it is configured for showing a Listing of directory contents. This information revea...
Eclipse Jetty 9.2.27
Eclipse Jetty 9.3.26
Eclipse Jetty 9.4.16
Netapp Oncommand System Manager
Netapp Snap Creator Framework -
Netapp Snapcenter -
Netapp Snapmanager -
Netapp Storage Replication Adapter For Clustered Data Ontap
Netapp Storage Replication Adapter For Clustered Data Ontap 9.6
Netapp Storage Services Connector -
Netapp Vasa Provider For Clustered Data Ontap
Netapp Vasa Provider For Clustered Data Ontap -
Preferred Score:
CVSSv2
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-0998
CVE-2025-26779
unknown
CVE-2025-1094
CVE-2025-1336
enituretechnology
unauthorized
CVE-2024-57970
s2member pro
oliver pos – a woocommerce point of sale (pos)
CVE-2024-40591
race condition
deserialization
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »