Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mysql vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2005-1274
Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB prior to 7.5.00.26 allows remote malicious users to execute arbitrary code via an HTTP unlock request and a long "If" parameter.
Mysql Maxdb
Mysql Maxdb 7.5.00.25
890
VMScore
CVE-2004-1168
Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and previous versions allows remote malicious users to execute arbitrary code via a long Overwrite header.
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.14
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.18
890
VMScore
CVE-2004-0628
Stack-based buffer overflow in MySQL 4.1.x prior to 4.1.3, and 5.0, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long scramble string.
Mysql Mysql 4.1.0
890
VMScore
CVE-2004-0836
Buffer overflow in the mysql_real_connect function in MySQL 4.x prior to 4.0.21, and 3.x prior to 3.23.49, allows remote DNS servers to cause a denial of service and possibly execute arbitrary code via a DNS response with a large address length (h_length).
Oracle Mysql
Debian Debian Linux 3.0
855
VMScore
CVE-2009-2446
Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 up to and including 5.0.83 allow remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format...
Mysql Mysql 4.1.8
Oracle Mysql 4.1.9
Oracle Mysql 4.1.17
Oracle Mysql 4.1.16
Mysql Mysql 4.1.3
Oracle Mysql 4.1.22
Mysql Mysql 4.1.0
Oracle Mysql 4.1.0
Mysql Mysql 4.1.12
Mysql Mysql 4.1.13
Oracle Mysql 4.0.25
Oracle Mysql 4.0.24
Oracle Mysql 4.0.6
Oracle Mysql 4.0.1
Oracle Mysql 4.0.16
Oracle Mysql 4.0.17
Oracle Mysql 5.0.0
Oracle Mysql 5.0.11
Mysql Mysql 5.0.1
Oracle Mysql 5.0.42
Mysql Mysql 5.0.56
Oracle Mysql 5.0.32
1 EDB exploit
855
VMScore
CVE-2008-4096
libraries/database_interface.lib.php in phpMyAdmin prior to 2.11.9.1 allows remote authenticated users to execute arbitrary code via a request to server_databases.php with a sort_by parameter containing PHP sequences, which are processed by create_function.
Phpmyadmin Phpmyadmin 2.11.2
Phpmyadmin Phpmyadmin 2.11.2.2
Phpmyadmin Phpmyadmin 2.11.0
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.10.3
Phpmyadmin Phpmyadmin 2.10.01
Phpmyadmin Phpmyadmin 2.10.2
Phpmyadmin Phpmyadmin 2.10.1
Phpmyadmin Phpmyadmin 2.0.2
Phpmyadmin Phpmyadmin 2.0.3
Phpmyadmin Phpmyadmin 2.10.0.0
Phpmyadmin Phpmyadmin 2.10.2.0
Phpmyadmin Phpmyadmin 2.11.2.0
Phpmyadmin Phpmyadmin 2.11.1.2
Phpmyadmin Phpmyadmin 2.11.1rc1
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.10.3rc1
Phpmyadmin Phpmyadmin 2.10.1.0
Phpmyadmin Phpmyadmin 2.11.5rc1
Phpmyadmin Phpmyadmin 2.11.4rc1
Phpmyadmin Phpmyadmin 2.0.0
Phpmyadmin Phpmyadmin 2.0.1
1 EDB exploit
830
VMScore
CVE-2008-0227
yaSSL 1.7.5 and previous versions, as used in MySQL and possibly other products, allows remote malicious users to cause a denial of service (crash) via a Hello packet containing a large size value, which triggers a buffer over-read in the HASHwithTransform::Update function in has...
Yassl Yassl
828
VMScore
CVE-2020-8174
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.
Nodejs Node.js
Oracle Banking Extensibility Workbench 14.4.0
Oracle Banking Extensibility Workbench 14.3.0
Oracle Retail Xstore Point Of Service 16.0.6
Oracle Retail Xstore Point Of Service 17.0.4
Oracle Retail Xstore Point Of Service 18.0.3
Oracle Retail Xstore Point Of Service 19.0.2
Oracle Retail Xstore Point Of Service 20.0.1
Oracle Mysql Cluster
Oracle Blockchain Platform
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
1 Github repository
828
VMScore
CVE-2019-14889
A flaw was found with the libssh API function ssh_scp_new() in versions prior to 0.9.3 and prior to 0.8.8. When the libssh SCP client connects to a server, the scp command, which includes a user-provided path, is executed on the server-side. In case the library is used in a way w...
Libssh Libssh
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 19.10
Opensuse Leap 15.1
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Debian Debian Linux 8.0
Oracle Mysql Workbench
1 Github repository
828
VMScore
CVE-2006-0200
Format string vulnerability in the error-reporting feature in the mysqli extension in PHP 5.1.0 and 5.1.1 might allow remote malicious users to execute arbitrary code via format string specifiers in MySQL error messages.
Php Php 5.1.0
Php Php 5.1.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »