Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
application express vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4005
Unspecified vulnerability in the Oracle Application Express component in Oracle Database 11.1.0.6 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
Oracle Database 11i 11.1.0.6
NA
CVE-2014-6483
Unspecified vulnerability in the Application Express component in Oracle Database Server prior to 4.2.6 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
Oracle Database Server
NA
CVE-2006-5352
Multiple unspecified vulnerabilities in Oracle Application Express 1.5 up to 1.6.1 have unknown impact and remote attack vectors, aka Vuln# (1) APEX04, (2) APEX20, and (3) APEX21.
Oracle Apex 1.5.0
Oracle Apex 1.6.1
NA
CVE-2011-3525
Unspecified vulnerability in the Application Express component in Oracle Database Server 3.2 and 4.0 allows remote authenticated users to affect confidentiality, integrity, and availability, related to APEX developer user.
Oracle Database Server 4.0
Oracle Database Server 3.2
NA
CVE-2003-1095
BEA WebLogic Server and Express 7.0 and 7.0.0.1, when using "memory" session persistence for web applications, does not clear authentication information when a web application is redeployed, which could allow users of that application to gain access without having to re...
Bea Weblogic Server 7.0
Bea Weblogic Server 7.0.0.1
6.1
CVSSv3
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
Redhat Hibernate Validator
Redhat Hibernate Validator 6.1.0
Redhat Single Sign-on -
Redhat Jboss Enterprise Application Platform -
Redhat Jboss Data Grid -
Redhat Openshift Application Runtimes -
Redhat Fuse 1.0
Redhat Jboss Enterprise Application Platform 7.2
Redhat Jboss Enterprise Application Platform 7.3
Netapp Active Iq Unified Manager -
Netapp Element -
Netapp Snapcenter Plug-in -
Netapp Management Services For Element Software And Netapp Hci -
Oracle Flexcube Investor Servicing 12.3.0
Oracle Flexcube Investor Servicing 12.1.0
Oracle Solaris 11
Oracle Flexcube Private Banking 12.1.0
Oracle Insurance Policy Administration J2ee 10.2.0
Oracle Flexcube Private Banking 12.0.0
Oracle Flexcube Investor Servicing 12.0.4
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Integration Bus 13.0
9.8
CVSSv3
CVE-2005-1744
BEA WebLogic Server and WebLogic Express 7.0 through Service Pack 5 does not log out users when an application is redeployed, which allows those users to continue to access the application without having to log in again, which may be in violation of newly changed security constra...
Bea Weblogic Server
7.5
CVSSv3
CVE-2017-3873
A vulnerability in the Plug-and-Play (PnP) subsystem of the Cisco Aironet 1800, 2800, and 3800 Series Access Points running a Lightweight Access Point (AP) or Mobility Express image could allow an unauthenticated, adjacent malicious user to execute arbitrary code with root privil...
Cisco Aironet Access Point Firmware 8.3 102.0
9.8
CVSSv3
CVE-2017-6747
A vulnerability in the authentication module of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote malicious user to bypass local authentication. The vulnerability is due to improper handling of authentication requests and policy assignment for externally...
Cisco Identity Services Engine 1.4\\(0.253\\)
Cisco Identity Services Engine 2.0\\(1.130\\)
Cisco Identity Services Engine 2.1\\(0.474\\)
Cisco Identity Services Engine 1.4\\(0.109\\)
Cisco Identity Services Engine 1.4\\(0.181\\)
Cisco Identity Services Engine 2.1 Base
Cisco Identity Services Engine 1.3\\(106.146\\)
Cisco Identity Services Engine 2.0 Base
Cisco Identity Services Engine 1.3\\(0.722\\)
Cisco Identity Services Engine 1.4\\(0.908\\)
Cisco Identity Services Engine 1.3\\(0.876\\)
Cisco Identity Services Engine 2.1\\(0.800\\)
Cisco Identity Services Engine 1.3\\(0.909\\)
Cisco Identity Services Engine 2.0\\(0.222\\)
Cisco Identity Services Engine 2.1\\(102.101\\)
Cisco Identity Services Engine 2.0\\(0.147\\)
Cisco Identity Services Engine 1.3\\(120.135\\)
Cisco Identity Services Engine 2.0\\(0.169\\)
NA
CVE-2005-4759
BEA WebLogic Server and WebLogic Express 8.1 and 7.0, during a migration across operating system platforms, do not warn the administrative user about platform differences in URLResource case sensitivity, which might cause local users to inadvertently lose protection of Web Applic...
Bea Weblogic Server 7.0
Bea Weblogic Server 8.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »