Oracle Corporation Application Express vulnerabilities

CVE-2020-2972 [MEDIUM] CWE-79 CVE-2020-2972: Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versi Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle Application Express. Successful attacks require human interaction from a p

CVE-2020-2513 [MEDIUM] CWE-79 CVE-2020-2513: Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versi Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle Application Express. Successful attacks require human interaction from a p

CVE-2020-2971 [MEDIUM] CVE-2020-2971: Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versi Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle Application Express. Successful attacks require human interaction from a person o

CVE-2020-2973 [MEDIUM] CVE-2020-2973: Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versi Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle Application Express. Successful attacks require human interaction from a person o

CVE-2020-2977 [MEDIUM] CVE-2020-2977: Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versi Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to compromise Oracle Application Express. Successful attacks require human interaction from a pe

CVE-2020-2975 [MEDIUM] CVE-2020-2975: Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versi Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle Application Express. Successful attacks require human interaction from a person o

CVE-2020-2976 [MEDIUM] CVE-2020-2976: Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versi Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle Application Express. Successful attacks require human interaction from a person o

CVE-2020-2974 [MEDIUM] CVE-2020-2974: Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versi Vulnerability in the Oracle Application Express component of Oracle Database Server. Supported versions that are affected are 5.1-19.2. Easily exploitable vulnerability allows low privileged attacker having SQL Workshop privilege with network access via HTTP to compromise Oracle Application Express. Successful attacks require human interaction from a person o

CVE-2020-2514 [MEDIUM] CVE-2020-2514: Vulnerability in the Oracle Application Express component of Oracle Database Server. The supported v Vulnerability in the Oracle Application Express component of Oracle Database Server. The supported version that is affected is Prior to 19.2. Easily exploitable vulnerability allows low privileged attacker having End User Role privilege with network access via HTTPS to compromise Oracle Application Express. Successful attacks require human interaction from a

CVE-2019-2484 [MEDIUM] CVE-2019-2484: Vulnerability in the Application Express component of Oracle Database Server. Supported versions tha Vulnerability in the Application Express component of Oracle Database Server. Supported versions that are affected are 5.1 and 18.2. Easily exploitable vulnerability allows low privileged attacker having Valid Account privilege with network access via HTTP to compromise Application Express. Successful attacks require human interaction from a person other than

CVE-2018-2699 [MEDIUM] CVE-2018-2699: Vulnerability in the Application Express component of Oracle Database Server. The supported version Vulnerability in the Application Express component of Oracle Database Server. The supported version that is affected is Prior to 5.1.4.00.08. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Application Express. Successful attacks require human interaction from a person other than the attacker and whil