Lucene search
K

47 matches found

Prion
Prion
added 2012/08/10 11:55 p.m.19 views

Sql injection

SQL injection vulnerability in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to execute arbitrary SQL commands via vectors involving CREATE INDEX with a CTXSYS.CONTEXT INDEXTYPE and DBMSSTATS.GATHERTABLESTATS...

6.5CVSS7.9AI score0.01822EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2012/08/10 11:0 p.m.65 views

CVE-2012-3132

CVE-2012-3132 affects Oracle Database Server versions 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3. The vulnerability is a SQL injection in the database server that allows a remote authenticated user to execute arbitrary SQL commands via vectors involving CREATE INDEX with a CTX...

6.5CVSS7.5AI score0.01822EPSS
Exploits0References8Affected Software1
OpenVAS
OpenVAS
added 2012/01/09 12:0 a.m.14 views

Mandriva Update for phpmyadmin MDVSA-2011:198 (phpmyadmin)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.5CVSS7.6AI score0.1267EPSS
Exploits11References2
UbuntuCve
UbuntuCve
added 2011/12/22 8:55 p.m.31 views

CVE-2011-4634

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 3.4.x before 3.4.8 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted database name, related to the Database Synchronize panel; 2 a crafted database name, related to the Database rename panel; 3 a crafted S...

4.3CVSS7.3AI score0.0221EPSS
Exploits1References2
OSV
OSV
added 2011/12/22 8:55 p.m.2 views

DEBIAN-CVE-2011-4634

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 3.4.x before 3.4.8 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted database name, related to the Database Synchronize panel; 2 a crafted database name, related to the Database rename panel; 3 a crafted S...

4.3CVSS8.6AI score0.0221EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2011/12/22 8:0 p.m.67 views

CVE-2011-4634

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 3.4.x before 3.4.8 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted database name, related to the Database Synchronize panel; 2 a crafted database name, related to the Database rename panel; 3 a crafted S...

4.3CVSS6AI score0.0221EPSS
Exploits1
myhack58
myhack58
added 2009/07/15 12:0 a.m.20 views

Use a low-privileged Oracle database accounts give the OS access permissions-bug warning-the black bar safety net

Author:Mickey These days look at the article called"Penetration: from application down to OS Oracle"of the document,feel quite interesting,the document probably means that is,if the ORACLE service is using the administrator account to start,as long as you have a have resource and connect privileg...

Exploits0
Rows per page
Query Builder