Where
-Infinity
0

Trending

Last week
Last month
Last year

Oracle Retail Integration BusApache log4j2 log messages substitution (CVE-2021-44228)

Risk 90
Severity
9.8
First published (updated )
CVE-2021-45105

redhat/rh-sso7-keycloakHTTP fails to validate against control chars in header names which may lead to HTTP request smuggling

Risk 39
Severity
6.5
First published (updated )
CVE-2021-43797

Oracle Primavera GatewayXSS in `*Text` options of the Datepicker widget

Risk 46
Severity
7.2
First published (updated )
CVE-2021-41183

Oracle Primavera UnifierXSS in the `of` option of the `.position()` util

Risk 46
Severity
7.2
First published (updated )
CVE-2021-41184

Oracle Primavera UnifierXSS in the `altField` option of the Datepicker widget

Risk 46
Severity
7.2
First published (updated )
CVE-2021-41182
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle Banking Digital ExperienceVulnerability in the Advanced Networking Option component of Oracle Database Server. Supported versi…

Risk 71
Severity
8.3
First published (updated )
CVE-2021-2351

Oracle Banking Enterprise Default ManagementXSS

Risk 39
Severity
6.1
First published (updated )
CVE-2021-35043

Oracle Banking ApisApache Commons Compress 1.0 to 1.20 denial of service vulnerability

Risk 45
Severity
7.5
First published (updated )
CVE-2021-36090

Oracle Banking ApisPossible limited path traversal vulnerabily in Apache Commons IO

Risk 37
Severity
4.8
First published (updated )
CVE-2021-29425

Oracle Communications Unified Inventory ManagementXStream is vulnerable to a Remote Command Execution attack

Risk 86
Severity
9.9
First published (updated )
CVE-2021-21345
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle Communications Unified Inventory ManagementXStream can cause a Denial of Service

Risk 45
Severity
7.5
First published (updated )
CVE-2021-21341

Oracle Communications Unified Inventory ManagementA Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host

Risk 51
Severity
8.6
First published (updated )
CVE-2021-21349

Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process has sufficient rights

Risk 45
Severity
7.5
First published (updated )
CVE-2021-21343

Oracle Communications Unified Inventory ManagementA Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host

Risk 69
Severity
9.1
First published (updated )
CVE-2021-21342

Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary Code Execution attack

Risk 89
Severity
9.8
First published (updated )
CVE-2021-21350
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle Communications Unified Inventory ManagementXStream is vulnerable to an attack using Regular Expression for a Denial of Service (ReDos)

Risk 46
Severity
7.8
First published (updated )
CVE-2021-21348

Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary Code Execution attack

Risk 89
Severity
9.8
First published (updated )
CVE-2021-21346

Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary Code Execution attack

Risk 89
Severity
9.8
First published (updated )
CVE-2021-21347

Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary Code Execution attack

Risk 89
Severity
9.8
First published (updated )
CVE-2021-21344

Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary Code Execution attack

Risk 75
Severity
9.1
First published (updated )
CVE-2021-21351
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle Banking Enterprise Default ManagementVelocity Sandbox Bypass

Risk 88
Severity
8.8
First published (updated )
CVE-2020-13936

Oracle Banking PlatformFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

Risk 78
Severity
8.1
First published (updated )
CVE-2020-36189

Oracle Banking PlatformFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

Risk 80
Severity
8.1
First published (updated )
CVE-2020-35490

Oracle Banking PlatformFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

Risk 80
Severity
8.1
First published (updated )
CVE-2020-35491

Oracle Retail Xstore Point of ServiceRemote Code Execution in XStream

Risk 83
Severity
9.3
First published (updated )
CVE-2020-26217
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle Commerce MerchandisingXSS

Risk 39
Severity
6.1
First published (updated )
CVE-2020-27193

Oracle Banking PlatformCode Injection

Risk 46
Severity
7.5
First published (updated )
CVE-2020-11979

Oracle Retail Integration BusLast updated 25 August 2025

Risk 41
Severity
6.5
First published (updated )
CVE-2020-1945

Oracle REST Data ServicesJQuery Cross-Site Scripting (XSS) Vulnerability

Risk 65
Severity
6.9
Exploited
First published (updated )
CVE-2020-11023

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

Risk 79
Severity
8.1
First published (updated )
CVE-2020-11620
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203