Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
application express vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-21975
Vulnerability in the Application Express Customers Plugin product of Oracle Application Express (component: User Account). Supported versions that are affected are Application Express Customers Plugin: 18.2-22.2. Easily exploitable vulnerability allows low privileged attacker wit...
Oracle Application Express
NA
CVE-2023-21983
Vulnerability in the Application Express Administration product of Oracle Application Express (component: None). Supported versions that are affected are Application Express Administration: 18.2-22.2. Difficult to exploit vulnerability allows unauthenticated attacker with network...
Oracle Application Express
5.5
CVSSv2
CVE-2008-1811
Unspecified vulnerability in Oracle Application Express 3.0.1 has unspecified impact and remote authenticated attack vectors related to flows_030000.wwv_execute_immediate, aka APEX01. NOTE: the previous information was obtained from the April 2008 CPU. Oracle has not commented on...
Oracle Application Express 3.0.1
10
CVSSv2
CVE-2008-1822
Unspecified vulnerability in the Oracle Application Express component in Oracle Application Express 3.0.1 has unknown impact and remote attack vectors, aka APEX02.
Oracle Application Express 3.0.1
4.9
CVSSv2
CVE-2021-2116
Vulnerability in the Oracle Application Express Opportunity Tracker component of Oracle Database Server. The supported version that is affected is before 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access ...
Oracle Application Express Opportunity Tracker
4.9
CVSSv2
CVE-2021-2117
Vulnerability in the Oracle Application Express Survey Builder component of Oracle Database Server. The supported version that is affected is before 20.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via H...
Oracle Application Express Survey Builder
4.3
CVSSv2
CVE-2021-32723
Prism is a syntax highlighting library. Some languages prior to 1.24.0 are vulnerable to Regular Expression Denial of Service (ReDoS). When Prism is used to highlight untrusted (user-given) text, an attacker can craft a string that will take a very very long time to highlight. Th...
Prismjs Prism
Oracle Application Express
5
CVSSv2
CVE-2020-7760
This affects the package codemirror prior to 5.58.2; the package org.apache.marmotta.webjars:codemirror prior to 5.58.2. The vulnerable regular expression is located in https://github.com/codemirror/CodeMirror/blob/cdb228ac736369c685865b122b736cd0d397836c/mode/javascript/javascri...
Codemirror Codemirror
Oracle Application Express
Oracle Essbase 21.2
Oracle Enterprise Manager Express User Interface 19c
Oracle Hyperion Data Relationship Management
Oracle Spatial Studio
7.5
CVSSv2
CVE-2010-0557
IBM Cognos Express 9.0 allows malicious users to obtain unspecified access to the Tomcat Manager component, and cause a denial of service, by leveraging hardcoded credentials.
Ibm Cognos Express 9.0
1 EDB exploit
5.4
CVSSv2
CVE-2014-6887
The EXPRESS (aka com.gpshopper.express.android) application 2.5.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Express Express 2.5.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »