Vulnerabilities > Oracle > Hospitality Reporting AND Analytics > 9.1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-20 | CVE-2019-10086 | Deserialization of Untrusted Data vulnerability in multiple products In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an attacker to access the classloader via the class property available on all Java objects. | 7.3 |
| 2019-01-16 | CVE-2019-2425 | Unspecified vulnerability in Oracle Hospitality Reporting and Analytics 9.1.0 Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Food and Beverage Applications. | 6.4 |
| 2019-01-16 | CVE-2019-2407 | Unspecified vulnerability in Oracle Hospitality Reporting and Analytics 9.1.0 Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Food and Beverage Applications. | 3.6 |
| 2019-01-16 | CVE-2019-2401 | Unspecified vulnerability in Oracle Hospitality Reporting and Analytics 9.1.0 Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Food and Beverage Applications. | 5.5 |
| 2019-01-16 | CVE-2019-2397 | Unspecified vulnerability in Oracle Hospitality Reporting and Analytics 9.1.0 Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Food and Beverage Applications. | 3.6 |
| 2018-01-18 | CVE-2015-9251 | Cross-site Scripting vulnerability in multiple products jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed. | 6.1 |