4 results (0.002 seconds)

CVSS: 5.5EPSS: 24%CPEs: 6EXPL: 2

CVE-2014-0372 – Oracle Demantra 12.2.1 - SQL Injection

https://notcve.org/view.php?id=CVE-2014-0372

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, and 12.2.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to DM Others. Vulnerabilidad no especificada en el componente de Oracle Demantra Demand Management en Oracle Supply Chain Products suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1 y 12.2.2 que permite a los usuarios remotos autenticados afectar a la confidencialidad y la integridad a través de vectores desconocidos en relación con DM Others. Oracle Demantra version 12.2.1 suffers from a remote SQL injection vulnerability. • https://www.exploit-db.com/exploits/31993 http://osvdb.org/102103 http://secunia.com/advisories/56474 http://www.exploit-db.com/exploits/31993 http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html http://www.securityfocus.com/archive/1/531316/100/0/threaded http://www.securityfocus.com/bid/64758 http://www.securityfocus.com/bid/64826 http://www.securitytracker.com/id/1029620 •

CVSS: 3.5EPSS: 0%CPEs: 6EXPL: 0

CVE-2014-0371 – Oracle Demantra 12.2.1 Reflective Cross Site Scripting

https://notcve.org/view.php?id=CVE-2014-0371

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0.x, 7.3.1.x, 12.2.0, 12.2.1, and 12.2.2 allows remote authenticated users to affect integrity via unknown vectors related to DM Others. Vulnerabilidad no especificada en el componente Oracle Demantra Demand Management de Oracle Demantra en Oracle Supply Chain Products suite 7.2.0.3 SQL-Server, 7.3.0.x, 7.3.1.x, 12.2.0, 12.2.1 y 12.2.2 que permite a los usuarios remotos autenticados para afectar la integridad a través de vectores desconocidos relacionados con DM Others. Oracle Demantra version 12.2.1 suffers from a reflective cross site scripting vulnerability. • http://osvdb.org/102098 http://secunia.com/advisories/56474 http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html http://www.securityfocus.com/bid/64758 http://www.securityfocus.com/bid/64886 http://www.securitytracker.com/id/1029620 •

CVSS: 4.3EPSS: 55%CPEs: 6EXPL: 2

CVE-2014-0379 – Oracle Demantra 12.2.1 - Persistent Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2014-0379

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0.x, 7.3.1.x, 12.2.0, 12.2.1, and 12.2.2 allows remote attackers to affect integrity via unknown vectors related to DM Others. Vulnerabilidad sin especificar en el componente Oracle Demantra Demand Management en Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0.x, 7.3.1.x, 12.2.0, 12.2.1, y 12.2.2 permite a atacantes remotos afectar a la integridad a través de vectores desconocidos relacionados con DM Others. Oracle Demantra version 12.2.1 suffers from a stored cross site scripting vulnerability. • https://www.exploit-db.com/exploits/31994 http://osvdb.org/102097 http://secunia.com/advisories/56474 http://www.exploit-db.com/exploits/31994 http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html http://www.securityfocus.com/bid/64758 http://www.securityfocus.com/bid/64857 http://www.securitytracker.com/id/1029620 •

CVSS: 5.0EPSS: 87%CPEs: 6EXPL: 1

CVE-2013-5795 – Oracle Demantra 12.2.1 - Database Credentials Disclosure

https://notcve.org/view.php?id=CVE-2013-5795

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, 12.2.2, and 12.2.3 allows remote attackers to affect confidentiality via unknown vectors related to DM Others. Vulnerabilidad no especificada en el componente Oracle Demantra Demand Management de Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, 12.2.2 y 12.2.3 permite a atacantes remotos afectar la confidencialidad a través de vectores desconocidos relacionados con DM Others. Oracle Demantra version 12.2.1 suffers from a data credential leak vulnerability. • https://www.exploit-db.com/exploits/31995 http://osvdb.org/102096 http://secunia.com/advisories/56474 http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html http://www.securityfocus.com/bid/64758 http://www.securityfocus.com/bid/64846 http://www.securitytracker.com/id/1029620 •