Fallos del tipo CWE-284
4445 resultadosCVE-2025-30697MEDIUMVulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Panel Processor). Supported versions that aEPSS 0.3%CVE-2025-30713MEDIUMVulnerability in the PeopleSoft Enterprise HCM Talent Acquisition Manager product of Oracle PeopleSoft (component: Job Opening). The suppoEPSS 0.3%CVE-2022-42862MEDIUMThis issue was addressed by removing the vulnerable code. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1. An app may beEPSS 0.3%CVE-2024-28818MEDIUMAn issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos EPSS 0.3%CVE-2025-46552MEDIUMKHC-INVITATION-AUTOMATION Sensitive User Information Leakage in Invitation AutomationEPSS 0.3%CVE-2023-6547LOWPlaybooks access/modification by removed team memberEPSS 0.3%CVE-2025-21586MEDIUMVulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime SEC). Supported versions that are EPSS 0.3%CVE-2023-29586MEDIUMCode Sector TeraCopy 3.9.7 does not perform proper access validation on the source folder during a copy operation. This leads to Arbitrary FEPSS 0.3%CVE-2025-30711MEDIUMVulnerability in the Oracle Applications Framework product of Oracle E-Business Suite (component: Attachments, File Upload). Supported versEPSS 0.3%CVE-2025-5184MEDIUMSummer Pearl Group Vacation Rental Management Platform HTTP Response Header information disclosureEPSS 0.3%CVE-2025-9415MEDIUMGreenCMS index.php unrestricted uploadEPSS 0.3%CVE-2026-44730HIGHOpenCTI: Privilege escalation via graphQL API abusable by organization admins, due to incorrect ACL on userEdit relationAddEPSS 0.3%CVE-2024-32969LOWvantage6 collaboration admins can extend their influence by expanding the collaborationEPSS 0.3%CVE-2026-8766MEDIUMKilo-Org kilocode Environment Variable config.ts load information disclosureEPSS 0.3%CVE-2026-28276HIGHInitiative Allows Unauthenticated Access to Uploaded Documents via Public /uploads/ EndpointEPSS 0.3%CVE-2025-14199MEDIUMVerysync 微力同步 Web Administration text.txt unrestricted uploadEPSS 0.3%CVE-2019-10127—A vulnerability was found in postgresql versions 11.x prior to 11.3. The Windows installer for BigSQL-supplied PostgreSQL does not lock downEPSS 0.3%CVE-2019-18308—A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with local access to the MS3000 ServerEPSS 0.3%CVE-2026-21960MEDIUMVulnerability in the Oracle Applications DBA product of Oracle E-Business Suite (component: Java utils). Supported versions that are affectEPSS 0.3%CVE-2019-18309—A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with local access to the MS3000 ServerEPSS 0.3%