CVSS: 4.3EPSS: 55%CPEs: 6EXPL: 2CVE-2014-0379 – Oracle Demantra 12.2.1 - Persistent Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2014-0379
Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0.x, 7.3.1.x, 12.2.0, 12.2.1, and 12.2.2 allows remote attackers to affect integrity via unknown vectors related to DM Others. Vulnerabilidad sin especificar en el componente Oracle Demantra Demand Management en Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0.x, 7.3.1.x, 12.2.0, 12.2.1, y 12.2.2 permite a atacantes remotos afectar a la integridad a través de vectores desconocidos relacionados con DM Others. Oracle Demantra version 12.2.1 suffers from a stored cross site scripting vulnerability. • https://www.exploit-db.com/exploits/31994 http://osvdb.org/102097 http://secunia.com/advisories/56474 http://www.exploit-db.com/exploits/31994 http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html http://www.securityfocus.com/bid/64758 http://www.securityfocus.com/bid/64857 http://www.securitytracker.com/id/1029620 •
CVSS: 5.0EPSS: 87%CPEs: 3EXPL: 1CVE-2013-5880 – Oracle Supply Chain Products Suite - Remote Security
https://notcve.org/view.php?id=CVE-2013-5880
Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 12.2.0, 12.2.1, and 12.2.2 allows remote attackers to affect confidentiality via unknown vectors related to DM Others. Vulnerabilidad no especificada en el componente Oracle Demantra Demand Management en Oracle Supply Chain Products Suite v12.2.0, v12.2.1, y v12.2.2 permite a atacantes remotos afectar a la confidencialidad a través de vectores desconocidos relacionados con otros DM. Oracle Demantra version 12.2.1 suffers from an authentication bypass vulnerability. • https://www.exploit-db.com/exploits/39018 http://osvdb.org/102095 http://secunia.com/advisories/56474 http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html http://www.securityfocus.com/bid/64758 http://www.securityfocus.com/bid/64836 http://www.securitytracker.com/id/1029620 •
CVSS: 5.0EPSS: 87%CPEs: 5EXPL: 1CVE-2013-5877 – Oracle Demantra 12.2.1 - Arbitrary File Disclosure
https://notcve.org/view.php?id=CVE-2013-5877
Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.0, and 12.2.1 allows remote attackers to affect confidentiality via unknown vectors related to DM Others. Vulnerabilidad no especificada en el componente Oracle Demantra Demand Management en Oracle Supply Chain Products Suite v7.2.0.3 SQL-Server, v7.3.0, v7.3.1, v12.2.0, y v12.2.1 permite a atacantes remotods afectar a la confidencialidad a través de vectores desconocidos relacionados con DM Others. Oracle Demantra version 12.2.1 suffers from a local file inclusion vulnerability. • https://www.exploit-db.com/exploits/31992 http://osvdb.org/102094 http://secunia.com/advisories/56474 http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html http://www.securityfocus.com/bid/64758 http://www.securityfocus.com/bid/64831 http://www.securitytracker.com/id/1029620 •