漏洞描述
Oracle Business Intelligence Enterprise Edition 5.5.0.0.0、12.2.1.3.0和12.2.1.4.0版本中存在本地文件包含漏洞,此漏洞是由于在处理用户提供的数据时缺少输入验证。
Oracle Business Intelligence Enterprise Edition CVE-2020-14864本地文件包含漏洞
PoC代码
暂无相关漏洞推荐
-
Oracle E-Business Suite /OA_HTML/jtfwrepo.xml 敏感信息泄漏漏洞 无POC
2025-09-01 | Oracle E-Business SuiteOracle E-Business Suite存在信息泄露漏洞,攻击者可以利用该漏洞获取大量敏感信息,以供下一步的攻击使用。 -
CVE-2020-14750: Oracle WebLogic Server - Remote Command Execution POC
2025-09-01 | Oracle WebLogic ServerOracle WebLogic Server 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0 is susceptible ... -
CVE-2020-14883: Oracle Fusion Middleware WebLogic Server Administration Console - Remote Code Execution POC
The Oracle Fusion Middleware WebLogic Server admin console in versions 10.3.6.0.0, 12.1.3.0.0, 12.2.... -
CVE-2020-10199: Nexus Repository before 3.21.2 allows JavaEL Injection POC
2025-09-01 | Nexus Repository漏洞触发需要任意账户权限 body="Nexus Repository Manager" app="Nexus-Repository-Manager" -
CVE-2020-11455: LimeSurvey 4.1.11 - Path Traversal POC
2025-09-01 | LimeSurveyLimeSurvey before 4.1.12+200324 contains a path traversal vulnerability in application/controllers/a...