Vulnerabilities > Oracle > Application Express

DATE CVE VULNERABILITY TITLE RISK
2018-01-18 CVE-2018-2699 Unspecified vulnerability in Oracle Application Express
Vulnerability in the Application Express component of Oracle Database Server.
network
low complexity
oracle
6.1
2017-03-15 CVE-2016-7103 Cross-site Scripting vulnerability in multiple products
Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web script or HTML via the closeText parameter of the dialog function.
6.1
2016-07-21 CVE-2016-3467 Unspecified vulnerability in Oracle Application Express
Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0.4 allows remote attackers to affect availability via unknown vectors.
network
low complexity
oracle
5.8
2016-07-21 CVE-2016-3448 Unspecified vulnerability in Oracle Application Express
Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0.4 allows remote attackers to affect confidentiality and integrity via unknown vectors.
network
low complexity
oracle
6.1