CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2008-5438
https://notcve.org/view.php?id=CVE-2008-5438
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.3 and 10.1.4.2 allows remote attackers to affect integrity via unknown vectors. Vulnerabilidad sin especificar en el componente Oracle Portal en Oracle Application Server 10.1.2.3 y 10.1.4.2, permite a atacantes remotos comprometer la integridad a través de vectores desconocidos. • http://secunia.com/advisories/33525 http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html http://www.securityfocus.com/bid/33177 http://www.securitytracker.com/id?1021572 http://www.vupen.com/english/advisories/2009/0115 •
CVSS: 5.5EPSS: 0%CPEs: 65EXPL: 0CVE-2008-4014 – Oracle Application Server Cross Site Scripting
https://notcve.org/view.php?id=CVE-2008-4014
Unspecified vulnerability in the Oracle BPEL Process Manager component in Oracle Application Server allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad sin especificar en el componente Oracle BPEL Process Manager en Oracle Application Server None permite a usuarios remotamente autentificados afectar la confidencialidad e integridad mediante vectores desconocidos. The Oracle Application Server (SOA) version 10.1.3.1.0 suffers from a cross site scripting vulnerability. • http://secunia.com/advisories/33525 http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html http://www.securityfocus.com/bid/33177 http://www.securitytracker.com/id?1021572 http://www.vupen.com/english/advisories/2009/0115 •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2008-2593
https://notcve.org/view.php?id=CVE-2008-2593
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.3 and 10.1.4.2 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-2594. Vulnerabilidad no especificada en el componente Oracle Portal en Oracle Application Server 10.1.2.3 y 10.1.4.2 tiene impacto desconocido y vectores de ataque remotos, una vulnerabilidad diferente a CVE-2008-2594. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 http://secunia.com/advisories/31087 http://secunia.com/advisories/31113 http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html http://www.securitytracker.com/id?1020494 http://www.vupen.com/english/advisories/2008/2109/references http://www.vupen.com/english/advisories/2008/2115 •
CVSS: 6.4EPSS: 0%CPEs: 4EXPL: 0CVE-2008-2589
https://notcve.org/view.php?id=CVE-2008-2589
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3, 10.1.2.2, and 10.1.4.1 has unknown impact and remote attack vectors. NOTE: the previous information was obtained from the Oracle July 2008 CPU. Oracle has not commented on reliable researcher claims that this issue is a SQL injection vulnerability in the WWV_RENDER_REPORT package that allows remote attackers to execute arbitrary SQL (PL/SQL) commands via the second argument to the SHOW procedure. Una vulnerabilidad no especificada en el componente Oracle Portal en Application Server de Oracle versiones 9.0.4.3, 10.1.2.2 y 10.1.4.1, presenta un impacto desconocido y vectores de ataque remotos. NOTA: la información anterior fue obtenida de la CPU de julio de 2008 de Oracle. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 http://secunia.com/advisories/31087 http://secunia.com/advisories/31113 http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html http://www.securityfocus.com/archive/1/494410/100/0/threaded http://www.securitytracker.com/id?1020494 http://www.vupen.com/english/advisories/2008/2109/references http://www.vupen.com/english/advisories/2008/2115 •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0CVE-2007-5517
https://notcve.org/view.php?id=CVE-2007-5517
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.0.2 and 10.1.4.1, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS02. Vulnerabilidad no especificada en el componente Oracle Portal en Oracle Application Server 10.1.2.0.2 y 10.1.4.1, y Collaboration Suite 10.1.2, tiene un impacto desconocido y vectores de ataque remoto, también conocido como AS02. • http://marc.info/?l=bugtraq&m=119332677525918&w=2 http://secunia.com/advisories/27251 http://secunia.com/advisories/27409 http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html http://www.securitytracker.com/id?1018823 http://www.us-cert.gov/cas/techalerts/TA07-290A.html http://www.vupen.com/english/advisories/2007/3524 http://www.vupen.com/english/advisories/2007/3626 •