Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4
CVE-2023-23949
- EPSS 0.51%
- Published 26.01.2023 21:18:15
- Last modified 02.04.2025 15:15:53
An authenticated user can supply malicious HTML and JavaScript code that will be executed in the client browser.
6.1
CVE-2023-23950
- EPSS 0.69%
- Published 26.01.2023 21:18:15
- Last modified 02.04.2025 15:15:53
User’s supplied input (usually a CRLF sequence) can be used to split a returning response into two responses.
6.1
CVE-2023-23951
- EPSS 0.63%
- Published 26.01.2023 21:18:15
- Last modified 02.04.2025 15:15:54
Ability to enumerate the Oracle LDAP attributes for the current user by modifying the query used by the application
1