Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xml database vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2017-10261
Vulnerability in the XML Database component of Oracle Database Server. Supported versions that are affected are 11.2.0.4 and 12.1.0.2. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with logon to the infrastructure where XML Databa...
Oracle Database 11.2.0.4
Oracle Database 12.1.0.2
6
CVSSv2
CVE-2011-2232
Unspecified vulnerability in the XML Developer Kit component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 11.1.0.7, and 11.2.0.1, and Oracle Fusion Middleware 10.1.3.5, allows remote authenticated users to affect confidentiality, integrity, and availability via unknown...
Oracle Fusion Middleware 10.1.3.5
Oracle Database Server 10.1.0.5
Oracle Database Server 11.1.0.7
Oracle Database Server 11.2.0.1
Oracle Database Server 10.2.0.3
Oracle Database Server 10.2.0.4
10
CVSSv2
CVE-2006-0287
Unspecified vulnerability in the Oracle HTTP Server component of Oracle Database Server 10.1.0.5 and Application Server 10.1.2.0.2 has unspecified impact and attack vectors, as identified by Oracle Vuln# OHS02.
Oracle Database Server 10.1.0.5
Oracle Application Server 10.1.2.0.2
1 EDB exploit
4
CVSSv2
CVE-2016-0461
Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect availability via unknown vectors.
Oracle Database Server 12.1.0.2
Oracle Database Server 11.2.0.4
Oracle Database Server 12.1.0.1
5.5
CVSSv2
CVE-2016-0472
Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality and availability via unknown vectors.
Oracle Database Server 12.1.0.2
Oracle Database Server 12.1.0.1
Oracle Database Server 11.2.0.4
4
CVSSv2
CVE-2015-4923
Unspecified vulnerability in the XML Developer's Kit for C component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect availability via unknown vectors.
Oracle Database Server 12.1.0.2
Oracle Database Server 12.1.0.1
Oracle Database Server 11.2.0.4
4
CVSSv2
CVE-2015-0479
Unspecified vulnerability in the XDK and XDB - XML Database component in Oracle Database Server 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect availability via unknown vectors.
Oracle Database Server 11.2.0.4
Oracle Database Server 12.1.0.1
Oracle Database Server 11.2.0.3
6.5
CVSSv2
CVE-2015-4900
Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
Oracle Database Server 11.2.0.4
Oracle Database Server 12.1.0.1
Oracle Database Server 12.1.0.2
6.5
CVSSv2
CVE-2022-1800
The Export any WordPress data to XML/CSV WordPress plugin prior to 1.3.5 does not sanitize the cpt POST parameter when exporting post data before using it in a database query, leading to an SQL injection vulnerability.
Soflyy Export Any Wordpress Data To Xml\\/csv
5
CVSSv2
CVE-2007-5513
The XML DB (XMLDB) component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 generates incorrect audit entries in the USERID column in which (1) long usernames are trimmed to 5 characters, or (2) short entries contain any extra characters from usernames in previous entries, a...
Oracle Database Server 9.2.0.8
Oracle Database Server 9.2.0.8dv
Oracle Database Server 10.1.0.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »