Vulnerabilities > Oracle > Webcenter Sites > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-04-23 | CVE-2019-2579 | Unspecified vulnerability in Oracle Webcenter Sites 12.2.1.3.0 Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Advanced UI). | 4.3 |
2019-04-20 | CVE-2019-11358 | jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. | 6.1 |
2018-10-17 | CVE-2018-3238 | Unspecified vulnerability in Oracle Webcenter Sites 11.1.1.8.0 Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Advanced UI). | 6.9 |
2018-01-18 | CVE-2015-9251 | Cross-site Scripting vulnerability in multiple products jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed. | 6.1 |
2018-01-18 | CVE-2018-2584 | Unspecified vulnerability in Oracle Webcenter Sites 11.1.1.8.0 Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Advanced UI). | 4.3 |
2017-10-19 | CVE-2017-10033 | Unspecified vulnerability in Oracle Webcenter Sites 11.1.1.8.0/12.2.1.2.0 Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Support Tools). | 4.0 |
2017-04-24 | CVE-2017-3597 | Unspecified vulnerability in Oracle Webcenter Sites Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Advanced UI). | 5.7 |
2017-04-24 | CVE-2017-3594 | Unspecified vulnerability in Oracle Webcenter Sites Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Advanced UI). | 5.9 |
2016-10-25 | CVE-2016-5511 | 7PK - Security Features vulnerability in Oracle Webcenter Sites 12.2.1.0.0/12.2.1.1.0/12.2.1.2.0 Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 12.2.1.0.0, 12.2.1.1.0, and 12.2.1.2.0 allows remote attackers to affect integrity via unknown vectors. | 4.3 |
2016-07-21 | CVE-2016-3502 | Unspecified vulnerability in Oracle Webcenter Sites 11.1.1.8/12.2.1.0 Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 11.1.1.8 and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | 6.5 |