Every CVE whose affected-product data names Oracle Reports, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2002-0947 — CVSS 7.5 (high): Buffer overflow in rwcgi60 CGI program for Oracle Reports Server 6.0.8.18.0 and earlier, as used in Oracle9iAS and other products, allows…
CVE-2005-2983 — CVSS 7.5 (high): SQL injection vulnerability in Oracle Reports that use Lexical References allows remote attackers to execute arbitrary SQL commands via the…
CVE-2002-1089 — CVSS 5.0 (medium): rwcgi60 CGI program in Oracle Reports Server, by design, provides sensitive information such as the full pathname, which could enable…
CVE-2005-2371 — CVSS 5.0 (medium): Directory traversal vulnerability in Oracle Reports 6.0, 6i, 9i, and 10g allows remote attackers to overwrite arbitrary files via (1) ".."…
CVE-2005-2378 — CVSS 5.0 (medium): Directory traversal vulnerability in Oracle Reports allows remote attackers to read arbitrary files via an absolute or relative path to the…
CVE-2005-2379 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Oracle Reports 9.0.2 allow remote attackers to inject arbitrary web script or HTML…