Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-04-20 | CVE-2011-0794 | Remote Code Execution vulnerability in Oracle Fusion Middleware 8.3.5.0 Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5.0 allows local users to affect confidentiality, integrity, and availability, related to File ID SDK. local oracle | 4.4 |
| 2011-04-20 | CVE-2011-0793 | Remote Database Vault vulnerability in Oracle Database Server Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect integrity and availability, related to SYSDBA. | 3.6 |
| 2011-04-20 | CVE-2011-0792 | Remote Oracle Warehouse Builder vulnerability in Oracle Database Server Unspecified vulnerability in the Oracle Warehouse Builder component in Oracle Database Server 10.2.0.5 (OWB) and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Dimensional Data Modeling. | 6.5 |
| 2011-04-20 | CVE-2011-0791 | Remote Application Object Library vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality via unknown vectors related to Data Export. network oracle | 4.3 |
| 2011-04-20 | CVE-2011-0790 | Local vulnerability in Oracle Solaris Unspecified vulnerability in Oracle Solaris 9 and 10 allows local users to affect confidentiality via unknown vectors related to wbem. | 1.7 |
| 2011-04-20 | CVE-2011-0789 | Remote Security vulnerability in Oracle Fusion Middleware 10.1.2.3 Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 10.1.2.3 allows remote attackers to affect integrity via unknown vectors. network oracle | 4.3 |
| 2011-04-20 | CVE-2011-0787 | Unspecified vulnerability in Oracle Database Server and Enterprise Manager Grid Control Unspecified vulnerability in the Application Service Level Management component in Oracle Database Server 11.1.0.7 and Enterprise Manager Grid Control allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Service Level Agreements. | 5.5 |
| 2011-04-20 | CVE-2011-0785 | Remote Security vulnerability in Oracle10g Enterprise Edition Unspecified vulnerability in the Oracle Help component in Oracle Database Server 11.1.0.7, 11.2.0.1, 11.2.0.2, 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, and 10.1.0.5; and Oracle Fusion Middleware 11.1.1.2.0, 11.1.1.3.0, and 11.1.1.4.0 allows remote attackers to affect integrity via unknown vectors. network oracle | 4.3 |
| 2011-04-19 | CVE-2011-1723 | Cross-Site Scripting vulnerability in Redmine Cross-site scripting (XSS) vulnerability in app/views/layouts/base.rhtml in Redmine 1.0.1 through 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to projects/hg-helloworld/news/. | 4.3 |
| 2011-04-19 | CVE-2011-1722 | SQL Injection vulnerability in Webempoweredchurch WEC Discussion Multiple SQL injection vulnerabilities in WEC Discussion Forum (wec_discussion) extension 2.1.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, as exploited in the wild in April 2011. | 7.5 |