Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
text vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2020-14734
Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Oracle Net to compromise Oracle Tex...
Oracle Text 11.2.0.4
Oracle Text 12.1.0.2
Oracle Text 12.2.0.1
Oracle Text 18c
Oracle Text 19c
3.5
CVSSv2
CVE-2021-2045
Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 18c and 19c. Difficult to exploit vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to ...
Oracle Text 12.1.0.2
Oracle Text 12.2.0.1
Oracle Text 18c
Oracle Text 19c
5.8
CVSSv2
CVE-2018-3299
Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2 and 12.2.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Text. S...
Oracle Text 11.2.0.4
Oracle Text 12.2.0.1
Oracle Text 12.1.0.2
1 Article
6.5
CVSSv2
CVE-2021-2328
Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having Create Any Procedure, Alter Any Table privilege with network access v...
Oracle Text 12.1.0.2
Oracle Text 12.2.0.1
Oracle Text 19c
NA
CVE-2023-0388
The Random Text WordPress plugin up to and including 0.3.0 does not properly sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by any authenticated users, such as subscribers.
Random Text Project Random Text
3.5
CVSSv2
CVE-2022-0737
The Text Hover WordPress plugin prior to 4.2 does not sanitize and escape the text to hover, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
Text Hover Project Text Hover
4.3
CVSSv2
CVE-2022-27860
Cross-Site Request Forgery (CSRF) leading to Cross-Site Scripting (XSS) in Shea Bunge's Footer Text plugin <= 2.0.3 on WordPress.
Footer-text Project Footer-text
5
CVSSv2
CVE-2006-0439
Text Rider 2.4 stores sensitive data in the data directory under the web document root with insufficient access control, which allows remote malicious users to obtain usernames and password hashes by directly accessing data/userlist.txt.
Text Rider Text Rider 2.4
5
CVSSv2
CVE-2006-0440
Text Rider 2.4 allows malicious users to bypass authentication and upload files without providing a valid password by obtaining the MD5 hash of the password (possibly via another vulnerability that reads it from a data file), then including the hash in a cookie.
Text Rider Text Rider 2.4
4.3
CVSSv2
CVE-2005-4498
Cross-site scripting (XSS) vulnerability in Text-e 1.6.4 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified search parameters.
Text-e Text-e Cms 1.6.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »