NotCVE - vendor:"Oracle" product:"Application Server" version:"5.6.2"

36 results (0.007 seconds)

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0

CVE-2016-15023 – SiteFusion Application Server Extension getextension.php path traversal

https://notcve.org/view.php?id=CVE-2016-15023

31 Jan 2023 — A vulnerability, which was classified as problematic, was found in SiteFusion Application Server up to 6.6.6. This affects an unknown part of the file getextension.php of the component Extension Handler. The manipulation leads to path traversal. Upgrading to version 6.6.7 is able to address this issue. The identifier of the patch is 49fff155c303d6cd06ce8f97bba56c9084bf08ac. • https://github.com/sitefusion/server/commit/49fff155c303d6cd06ce8f97bba56c9084bf08ac • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2009-1017

https://notcve.org/view.php?id=CVE-2009-1017

15 Apr 2009 — Unspecified vulnerability in the BI Publisher component in Oracle Application Server 5.6.2, 10.1.3.2.1, 10.1.3.3.3, and 10.1.3.4 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2009-0994. Vulnerabilidad no especificada en el componente BI Publisher en Oracle Application Server 5.6.2, 10.1.3.2.1, 10.1.3.3.3 y 10.1.3.4 permite a usuarios remotos autenticados afectar la confidencialidad a través de vectores desconocidos, una vulnerabilidad dif... • http://osvdb.org/53746 •

CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2009-0994

https://notcve.org/view.php?id=CVE-2009-0994

15 Apr 2009 — Unspecified vulnerability in the BI Publisher component in Oracle Application Server 5.6.2, 10.1.3.2.1, 10.1.3.3.3, and 10.1.3.4 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2009-1017. Vulnerabilidad no especificada en el componente BI Publisher en Oracle Application Server 5.6.2, 10.1.3.2.1, 10.1.3.3.3 y 10.1.3.4 permite a usuarios remotos autenticados afectar la confidencialidad a través de vectores desconocidos, una vulnerabilidad dif... • http://osvdb.org/53744 •

CVSS: 8.5EPSS: 0%CPEs: 3EXPL: 0

CVE-2009-0989

https://notcve.org/view.php?id=CVE-2009-0989

15 Apr 2009 — Unspecified vulnerability in the BI Publisher component in Oracle Application Server 5.6.2, 10.1.3.2.1, and 10.1.3.3.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2009-0990. Vulnerabilidad no especificada en el componente BI Publisher en Oracle Application Server 5.6.2, 10.1.3.2.1 y 10.1.3.3.3 permite a usuarios remotos autenticados afectar la confidencialidad y la integridad a través de vectores desconocidos, una vulnerab... • http://osvdb.org/53742 •

CVSS: 8.5EPSS: 0%CPEs: 3EXPL: 0

CVE-2009-0990

https://notcve.org/view.php?id=CVE-2009-0990

15 Apr 2009 — Unspecified vulnerability in the BI Publisher component in Oracle Application Server 5.6.2, 10.1.3.2.1, and 10.1.3.3.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2009-0989. Vulnerabilidad no especificada en el componente BI Publisher en Oracle Application Server 5.6.2, 10.1.3.2.1 y 10.1.3.3.3 permite a usuarios remotos autenticados afectar la confidencialidad y la integridad a través de vectores desconocidos, una vulnerab... • http://osvdb.org/53743 •

CVSS: 8.5EPSS: 0%CPEs: 65EXPL: 0

CVE-2008-4014

https://notcve.org/view.php?id=CVE-2008-4014

14 Jan 2009 — Unspecified vulnerability in the Oracle BPEL Process Manager component in Oracle Application Server allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad sin especificar en el componente Oracle BPEL Process Manager en Oracle Application Server None permite a usuarios remotamente autentificados afectar la confidencialidad e integridad mediante vectores desconocidos. • http://secunia.com/advisories/33525 •

CVSS: 6.5EPSS: 1%CPEs: 4EXPL: 0

CVE-2008-2619

https://notcve.org/view.php?id=CVE-2008-2619

14 Oct 2008 — Unspecified vulnerability in the Oracle Reports Developer component in Oracle Application Server 1.0.2.2, 9.0.4.3, and 10.1.2.2, and E-Business Suite 11.5.10.2, allows remote authenticated users to affect availability via unknown vectors. Vulnerabilidad sin especificar en el componente Oracle Reports Developer de Oracle Application Server 1.0.2.2, 9.0.4.3, and 10.1.2.2 y E-Business Suite 11.5.10.2 permite a un atacante remoto autentificado comprometer la disponibilidad por medio de un método desconocido. • http://secunia.com/advisories/32291 •

CVSS: 10.0EPSS: 5%CPEs: 26EXPL: 0

CVE-2008-0344

https://notcve.org/view.php?id=CVE-2008-0344

17 Jan 2008 — Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 and 10.2.0.3 has unknown impact and remote attack vectors, aka DB07. Vulnerabilidad no especificada en el componente Oracle Spatial de Oracle Database 10.1.0.5 y 10.2.0.3 tiene impacto y vectores de ataque remotos desconocidos, también conocido como DB07. • http://marc.info/?l=bugtraq&m=120058413923005&w=2 •

CVSS: 10.0EPSS: 1%CPEs: 28EXPL: 0

CVE-2008-0347

https://notcve.org/view.php?id=CVE-2008-0347

17 Jan 2008 — Unspecified vulnerability in the Oracle Ultra Search component in Oracle Collaboration Suite 10.1.2; Database 9.2.0.8, 10.1.0.5, and 10.2.0.3; and Application Server 9.0.4.3 and 10.1.2.0.2; has unknown impact and local attack vectors, aka OCS01. NOTE: Oracle has not disputed a reliable claim that this issue is related to WKSYS schema privileges. Una vulnerabilidad no especificada en el componente Oracle Ultra Search en Oracle Collaboration Suite versión 10.1.2; Database versiones 9.2.0.8, 10.1.0.5 y 10.2.0.... • http://marc.info/?l=bugtraq&m=120058413923005&w=2 •

CVSS: 10.0EPSS: 5%CPEs: 26EXPL: 0

CVE-2008-0345

https://notcve.org/view.php?id=CVE-2008-0345

17 Jan 2008 — Unspecified vulnerability in the Core RDBMS component in Oracle Database 11.1.0.6 has unknown impact and remote attack vectors, aka DB08. Vulnerabilidad no especificada en el componente Core RDBMS de Oracle Database 11.1.0.6 tiene impacto y vectores de ataque remotos desconocidos, también conocido como DB08. • http://marc.info/?l=bugtraq&m=120058413923005&w=2 •

1 2 3 4