CVE-2026-21972 | Oracle Configurator up to 12.2.15 User Interface information disclosure

Inserito da Angelo Barbosa | Gen 20, 2026 | CVE

A vulnerability categorized as problematic has been discovered in Oracle Configurator up to 12.2.15. Affected by this vulnerability is an unknown functionality of the component User Interface. Such manipulation leads to information disclosure.

This vulnerability is documented as CVE-2026-21972. The attack can be executed remotely. There is not any exploit available.

It is advisable to upgrade the affected component.

CVE-2026-21972 | Oracle Configurator up to 12.2.15 User Interface information disclosure

Post correlati

CVE-2024-51628 | EzyOnlineBookings Online Booking System Widget Plugin up to 1.3 on WordPress cross site scripting

CVE-2024-36046 | Infoblox NIOS up to 8.6.4 unnecessary privileges

CVE-2024-1279 | Paid Memberships Pro Plugin up to 2.12.8 on WordPress Metadata information disclosure

CVE-2024-7648 | Opal Membership Plugin up to 1.2.4 on WordPress information disclosure