cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2025-21537,https://securityvulnerability.io/vulnerability/CVE-2025-21537,SQL Injection Vulnerability in Oracle PeopleSoft Cash Management,"A SQL Injection vulnerability exists in the Oracle PeopleSoft Enterprise FIN Cash Management product affecting version 9.2. This flaw can be exploited by low-privileged attackers with network access via HTTP, allowing unauthorized manipulation of data. Successful exploitation could lead to unauthorized updates, insertions, deletions, and reading of sensitive data, compromising both confidentiality and integrity within the application. Organizations using this version are advised to apply security patches promptly to safeguard against potential breaches.",Oracle,Peoplesoft Enterprise Fin Cash Management,5.4,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-21T20:53:11.110Z,0
CVE-2022-21481,https://securityvulnerability.io/vulnerability/CVE-2022-21481,Vulnerability in Oracle PeopleSoft FIN Cash Management Component,"A vulnerability exists in the PeopleSoft Enterprise FIN Cash Management product from Oracle, which allows low privileged attackers with network access to compromise the system through HTTP. Exploiting this flaw requires human interaction from a different user, increasing the risk of unauthorized data manipulations. Attackers may gain the ability to insert, update, or delete data, along with unauthorized read access to specific financial data. This vulnerability may not only affect the Cash Management product but could also have broader implications on other related components.",Oracle,Peoplesoft Enterprise Fin Cash Management,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-04-19T20:38:28.000Z,0