Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mysql vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2006-4305
Buffer overflow in SAP DB and MaxDB prior to 7.6.00.30 allows remote malicious users to execute arbitrary code via a long database name when connecting via a WebDBM client.
Mysql Maxdb
Sap-db Sap-db
1 EDB exploit
10
CVSSv2
CVE-2005-1274
Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB prior to 7.5.00.26 allows remote malicious users to execute arbitrary code via an HTTP unlock request and a long "If" parameter.
Mysql Maxdb
Mysql Maxdb 7.5.00.25
10
CVSSv2
CVE-2005-0684
Multiple buffer overflows in the web tool for MySQL MaxDB prior to 7.5.00.26 allows remote malicious users to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functiona...
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.19
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.14
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.18
Mysql Maxdb 7.5.00.23
1 EDB exploit
10
CVSSv2
CVE-2004-1168
Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and previous versions allows remote malicious users to execute arbitrary code via a long Overwrite header.
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.14
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.18
10
CVSSv2
CVE-2004-0627
The check_scramble_323 function in MySQL 4.1.x prior to 4.1.3, and 5.0, allows remote malicious users to bypass authentication via a zero-length scrambled string.
Mysql Mysql 4.1.0
1 EDB exploit
10
CVSSv2
CVE-2004-0628
Stack-based buffer overflow in MySQL 4.1.x prior to 4.1.3, and 5.0, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long scramble string.
Mysql Mysql 4.1.0
10
CVSSv2
CVE-2004-0836
Buffer overflow in the mysql_real_connect function in MySQL 4.x prior to 4.0.21, and 3.x prior to 3.23.49, allows remote DNS servers to cause a denial of service and possibly execute arbitrary code via a DNS response with a large address length (h_length).
Oracle Mysql
Debian Debian Linux 3.0
9.4
CVSSv2
CVE-2012-2627
d4d/uploader.php in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) prior to 9.5.0 allows remote malicious users to create or overwrite arbitrary files in %PROGRAMFILES%\Scrutinizer\snmp\mibs\ via a multipart/form-data POST request.
Sonicwall Scrutinizer
1 EDB exploit
9.3
CVSSv2
CVE-2020-8174
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.
Nodejs Node.js
Oracle Banking Extensibility Workbench 14.4.0
Oracle Banking Extensibility Workbench 14.3.0
Oracle Retail Xstore Point Of Service 16.0.6
Oracle Retail Xstore Point Of Service 17.0.4
Oracle Retail Xstore Point Of Service 18.0.3
Oracle Retail Xstore Point Of Service 19.0.2
Oracle Retail Xstore Point Of Service 20.0.1
Oracle Mysql Cluster
Oracle Blockchain Platform
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
1 Github repository
9.3
CVSSv2
CVE-2019-14889
A flaw was found with the libssh API function ssh_scp_new() in versions prior to 0.9.3 and prior to 0.8.8. When the libssh SCP client connects to a server, the scp command, which includes a user-provided path, is executed on the server-side. In case the library is used in a way w...
Libssh Libssh
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 19.10
Opensuse Leap 15.1
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Debian Debian Linux 8.0
Oracle Mysql Workbench
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »