Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
database vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-4208
Unspecified vulnerability in OSADS Alliance Database prior to 2.1 has unknown impact and attack vectors, possibly related to includes/functions.php, a different issue than CVE-2006-2874.
Osads Alliance Database Osads Alliance Database 1.2
Osads Alliance Database Osads Alliance Database 1.4
Osads Alliance Database Osads Alliance Database 1.3
Osads Alliance Database Osads Alliance Database 1.1
Osads Alliance Database Osads Alliance Database
5
CVSSv2
CVE-2005-0298
The DIRECTORY objects in Oracle 8i through Oracle 10g contain the location of a specific operating system directory, which allows users with read privileges to a DIRECTORY object to obtain sensitive information.
Oracle Database Server 10.1.0.3
Oracle Database Server 10.1.0.3.1
Oracle Database Server 9.2.0.5
Oracle Database Server 9.2.0.6
Oracle Database Server 10.1.0.2
Oracle Database Server 9.0.1.5
Oracle Database Server 9.0.4
Oracle Database Server 9.2.0.4
Oracle Database Server 8.1.7.4
Oracle Database Server 9.0.1.4
Oracle Database Server 8.0.6
Oracle Database Server 8.0.6.3
8.5
CVSSv2
CVE-2007-5897
Buffer overflow in MDSYS.SDO_CS in Oracle Database Server 8iR3, 9iR1, 9iR2 up to 9.2.0.6, and 10gR1 up to 10.1.0.4 allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via the TRANSFORM function. NOTE: this issue might already be cover...
Oracle Database Server 9.2.0.2
Oracle Database Server 9.2.0.3
Oracle Database Server 10.1.0.2
Oracle Database Server 10.1.0.3
Oracle Database Server 9.2.0.6
Oracle Database Server
Oracle Database Server 9.2.0.4
Oracle Database Server 9.2.0.5
Oracle Database Server 10.1.0.4
Oracle Database Server 9.2.0.1
10
CVSSv2
CVE-2003-1333
Unspecified vulnerability in the Cache' Server Page (CSP) implementation in InterSystems Cache' 4.0.3 up to and including 5.0.5 allows remote malicious users to "gain complete control" of a server.
Intersystems Cache Database 4.1.16
Intersystems Cache Database 5.0.12
Intersystems Cache Database 5.0.5
Intersystems Cache Database 5.0.17
Intersystems Cache Database 5.0.19
Intersystems Cache Database 5.0.21
Intersystems Cache Database 5.0.3
Intersystems Cache Database 4.0.4
Intersystems Cache Database 4.1.15
Intersystems Cache Database 5
Intersystems Cache Database 4.0.3
7.5
CVSSv2
CVE-2014-3961
SQL injection vulnerability in the Export CSV page in the Participants Database plugin prior to 1.5.4.9 for WordPress allows remote malicious users to execute arbitrary SQL commands via the query parameter in an "output CSV" action to pdb-signup/.
Xnau Participants Database
Xnau Participants Database 1.5.4.7
Xnau Participants Database 1.5.4.2
Xnau Participants Database 1.5.4.4
Xnau Participants Database 1.5.4.3
Xnau Participants Database 1.5.4.5
Xnau Participants Database 1.5.4
Xnau Participants Database 1.5.4.6
Xnau Participants Database 1.5.4.1
1 EDB exploit
4.3
CVSSv2
CVE-2006-2874
Unspecified vulnerability in OSADS Alliance Database prior to 1.4 has unknown impact and attack vectors related to a "Security Leak to lock in HTML-Code," possibly due to a cross-site scripting (XSS) vulnerability involving comments.
Osads Alliance Database Osads Alliance Database 1.1
Osads Alliance Database Osads Alliance Database 1.2
Osads Alliance Database Osads Alliance Database 1.3
1.7
CVSSv2
CVE-2008-3973
Unspecified vulnerability in the SQL*Plus Windows GUI component in Oracle Database allows local users to affect confidentiality via unknown vectors.
Oracle Database 11g
Oracle Database 10g 10.1.0.5
Oracle Database 10g 10.1.2.3
Oracle Database 10g 10.2.0.3
Oracle Database 10g 10.2.0.4
Oracle Database 10g 10.1.4.2
Oracle Database 10g 10.2.0.2
6.5
CVSSv2
CVE-2009-0972
Unspecified vulnerability in the Workspace Manager component in Oracle Database 11.1.0.6, 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
Oracle Database Server 10.1.0.5
Oracle Database Server 11.1.0.6
Oracle Database Server 11.1.0.7
Oracle Database Server 9.2.0.8
Oracle Database Server 10.2.0.4
Oracle Database Server 9.2.0.8dv
Oracle Database Server 10.2.0.3
7.5
CVSSv2
CVE-2006-0547
Oracle Database 8i, 9i, and 10g allow remote authenticated users to execute arbitrary SQL statements in the context of the SYS user and bypass audit logging, including statements to create new privileged database accounts, via a modified AUTH_ALTER_SESSION attribute in the authen...
Oracle Database Server 10.1.0.3
Oracle Database Server 10.2.0.1
Oracle Database Server 8.1.7.4
Oracle Database Server 9.2.0.6
Oracle Database Server 9.2.0.7
Oracle Database Server 10.1.0.4
Oracle Database Server 10.1.0.5
5.5
CVSSv2
CVE-2012-0082
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to affect integrity and availability via unknown vectors.
Oracle Database Server 10.2.0.4
Oracle Database Server 10.2.0.5
Oracle Database Server 11.2.0.3
Oracle Database Server 11.1.0.7
Oracle Database Server 11.2.0.2
Oracle Database Server 10.1.0.5
Oracle Database Server 10.2.0.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »