Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
application express vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2003-0532
Internet Explorer 5.01 SP3 up to and including 6.0 SP1 does not properly determine object types that are returned by web servers, which could allow remote malicious users to execute arbitrary code via an object tag with a data parameter to a malicious file hosted on a server that...
Microsoft Internet Explorer 5.0.1
Microsoft Ie 6.0
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
534
VMScore
CVE-2010-0076
Unspecified vulnerability in the Application Express Application Builder component in Oracle Database 3.2.1.00.10 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
Oracle Database 3.2.1.00.10
412
VMScore
CVE-2019-11358
jQuery prior to 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Jquery Jquery
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Drupal Drupal
Backdropcms Backdrop
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Netapp Snapcenter -
Netapp Oncommand System Manager
Redhat Cloudforms 4.7
Redhat Virtualization Manager 4.3
Oracle Service Bus 12.1.3.0.0
Oracle Primavera Unifier 16.2
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Weblogic Server 12.1.3.0.0
Oracle Service Bus 11.1.1.9.0
Oracle Jdeveloper 11.1.1.9.0
Oracle Primavera Unifier 16.1
98 Github repositories
383
VMScore
CVE-2010-0892
Unspecified vulnerability in the Application Express component in Oracle Database Server 3.2.0.00.27 allows remote malicious users to affect integrity via unknown vectors.
Oracle Database Server 3.2.0.00.27
445
VMScore
CVE-2013-1519
Unspecified vulnerability in the Application Express component in Oracle Database Server prior to 4.2.1 allows remote malicious users to affect integrity via unknown vectors.
Oracle Database Server 4.2.1
383
VMScore
CVE-2015-2586
Unspecified vulnerability in the Application Express component in Oracle Database Server prior to 4.2.1 allows remote malicious users to affect availability via unknown vectors.
Oracle Database Server
570
VMScore
CVE-2008-0895
BEA WebLogic Server and WebLogic Express 6.1 up to and including 10.0 allows remote malicious users to bypass authentication for application servlets via crafted request headers.
Bea Weblogic Server 6.1
Bea Weblogic Server 7.0
Bea Weblogic Server 8.1
Bea Weblogic Server 9.0
Bea Weblogic Server 10.0
Bea Weblogic Server 9.1
Bea Weblogic Server 9.2
187
VMScore
CVE-2015-2585
Unspecified vulnerability in the Application Express component in Oracle Database Server prior to 5.0 allows remote authenticated users to affect availability via unknown vectors.
Oracle Database Server
383
VMScore
CVE-2012-1708
Unspecified vulnerability in the Application Express component in Oracle Database Server 4.0 and 4.1 allows remote malicious users to affect integrity via unknown vectors.
Oracle Database Server 4.0
Oracle Database Server 4.1
490
VMScore
CVE-2009-1993
Unspecified vulnerability in the Application Express component in Oracle Database 3.0.1 allows remote authenticated users to affect confidentiality and integrity, related to FLOWS_030000.WWV_EXECUTE_IMMEDIATE.
Oracle Database Server 3.0.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »