CVE-2016-7103
- EPSS 22.58%
- Veröffentlicht 15.03.2017 16:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web script or HTML via the closeText parameter of the dialog function.
- EPSS 100%
- Veröffentlicht 11.03.2017 02:59:00
- Zuletzt bearbeitet 21.04.2026 17:04:11
The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote attackers to execute arbitrary commands via a...
CVE-2017-3248
- EPSS 97.3%
- Veröffentlicht 27.01.2017 22:59:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0, 12.2.1.0 and 12.2.1.1. Easily exploitable vulnerability allows unauthentic...
CVE-2016-5601
- EPSS 0.4%
- Veröffentlicht 25.10.2016 14:31:13
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 12.1.3.0, 12.2.1.0, and 12.2.1.1 allows local users to affect confidentiality and integrity via vectors related to CIE Related Components.
CVE-2016-5535
- EPSS 5.08%
- Veröffentlicht 25.10.2016 14:30:10
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, 12.2.1.0, and 12.2.1.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
CVE-2016-5531
- EPSS 5.08%
- Veröffentlicht 25.10.2016 14:30:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS-WebServices.
CVE-2016-5488
- EPSS 3.53%
- Veröffentlicht 25.10.2016 14:29:23
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 and 12.1.3.0 allows remote attackers to affect availability via vectors related to Web Container, a different vulnerability than CVE-2016-3445.
- EPSS 5.43%
- Veröffentlicht 25.10.2016 14:29:13
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in the Oracle Web Services component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, 12.1.3.0.0, and 12.2.1.0.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXWS ...
- EPSS 5.7%
- Veröffentlicht 25.10.2016 14:29:12
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to JavaServer ...
- EPSS 19.78%
- Veröffentlicht 21.07.2016 10:14:25
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS Core Components, ...