CVE-2023-21842
- EPSS 1.38%
- Veröffentlicht 18.01.2023 00:15:13
- Zuletzt bearbeitet 21.11.2024 07:43:45
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Container). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated atta...
CVE-2022-21616
- EPSS 0.05%
- Veröffentlicht 18.10.2022 21:15:12
- Zuletzt bearbeitet 21.11.2024 06:45:04
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Container). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Difficult to exploit vulnerability allows high privileged atta...
CVE-2022-21548
- EPSS 2.09%
- Veröffentlicht 19.07.2022 22:15:12
- Zuletzt bearbeitet 21.11.2024 06:44:55
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with n...
CVE-2022-21557
- EPSS 0.16%
- Veröffentlicht 19.07.2022 22:15:12
- Zuletzt bearbeitet 21.11.2024 06:44:57
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Container). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Difficult to exploit vulnerability allows high privileged atta...
CVE-2022-21560
- EPSS 2.81%
- Veröffentlicht 19.07.2022 22:15:12
- Zuletzt bearbeitet 21.11.2024 06:44:57
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with n...
CVE-2022-21564
- EPSS 2.81%
- Veröffentlicht 19.07.2022 22:15:12
- Zuletzt bearbeitet 21.11.2024 06:44:58
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacke...
CVE-2022-24891
- EPSS 1.04%
- Veröffentlicht 27.04.2022 21:15:08
- Zuletzt bearbeitet 03.11.2025 20:15:53
ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library. Prior to version 2.3.0.0, there is a potential for a cross-site scripting vulnerability in ESAPI caused by a incorrect regular expression for ...
CVE-2022-23457
- EPSS 0.39%
- Veröffentlicht 25.04.2022 20:15:41
- Zuletzt bearbeitet 03.11.2025 20:15:52
ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library. Prior to version 2.3.0.0, the default implementation of `Validator.getValidDirectoryPath(String, String, File, boolean)` may incorrectly treat...
CVE-2022-29577
- EPSS 0.24%
- Veröffentlicht 21.04.2022 23:15:10
- Zuletzt bearbeitet 21.11.2024 06:59:20
OWASP AntiSamy before 1.6.7 allows XSS via HTML tag smuggling on STYLE content with crafted input. The output serializer does not properly encode the supposed Cascading Style Sheets (CSS) content. NOTE: this issue exists because of an incomplete fix ...
CVE-2022-21453
- EPSS 1.12%
- Veröffentlicht 19.04.2022 21:15:16
- Zuletzt bearbeitet 21.11.2024 06:44:44
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker wit...