Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3671 matches found

securityvulns
securityvulnsadded 2006/07/24 12:0 a.m.39 views

Oracle Database - SQL Injection in SYS.DBMS_STATS [DB21]

Name SQL Injection in package SYS.DBMSSTATS 6980751 DB21 Systems Oracle 10g Release 1 Severity High Risk Category SQL Injection Vendor URL http://www.oracle.com/ Author Alexander Kornbrust ak at red-database-security.com Advisory 18 Jul 2006 V 1.00 Advisory...

0.6AI score
Exploits0
securityvulns
securityvulnsadded 2006/07/24 12:0 a.m.71 views

Oracle Database - SQL Injection in SYS.KUPW$WORKER [DB03]

Name SQL Injection in package SYS.KUPW$WORKER 6980775 DB03 Systems Oracle 10g Release 1 Severity High Risk Category SQL Injection Vendor URL http://www.oracle.com/ Author Alexander Kornbrust ak at red-database-security.com Advisory 18 Jul 2006 V 1.00 Advisory...

0.3AI score
Exploits0
securityvulns
securityvulnsadded 2006/07/22 12:0 a.m.36 views

Multiple Cisco Security Monitoring, Analysis and Response System security vulnerabilities

Default preconfigured Oracle databse account, JBoss code execution, multiple administrative interface code executions...

2.8AI score
Exploits0References2Affected Software1
NVD
NVDadded 2006/07/21 2:3 p.m.22 views

CVE-2006-3702

Multiple unspecified vulnerabilities in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, 10.1.0.5, and 10.2.0.2 have unknown impact and attack vectors, aka Oracle Vuln 1 DB06 in Export; 2 DB08, 3 DB09, 4 DB10, 5 DB11, 6 DB12, 7 DB13, 8 DB14, and 9 DBC01 for OCI; 10 DB16 for Query Rewrite/Summary Mgmt; ...

10CVSS6.3AI score0.04234EPSS
Exploits0References13
NVD
NVDadded 2006/07/21 2:3 p.m.16 views

CVE-2006-3700

Multiple unspecified vulnerabilities in Oracle Database 9.2.0.6 and 10.1.0.4 have unknown impact and attack vectors, aka Oracle Vuln 1 DB04 for Web Distributed Authoring and Versioning DAV and 2 DB23 for XMLDB...

10CVSS6.6AI score0.04842EPSS
Exploits0References11
NVD
NVDadded 2006/07/21 2:3 p.m.14 views

CVE-2006-3701

Unspecified vulnerability in the Dictionary component in Oracle Database 8.1.7.4, 9.0.1.5, and 9.2.0.6 has unknown impact and attack vectors, aka Oracle Vuln DB05...

9CVSS6.2AI score0.03321EPSS
Exploits0References11
CVE
CVEadded 2006/07/19 10:0 a.m.63 views

CVE-2006-3700

CVE-2006-3700 affects Oracle Database 9.2.0.6 and 10.1.0.4 with two concerns (DB04 DAV and DB23 XMLDB). The NVD entry notes unknown impact/attack vectors. A Nessus July 2006 CPU plugin associates CVE-2006-3700 with missing CPU and lists impacted components including DAV/XMLDB; remediation guidanc...

10CVSS6.6AI score0.04842EPSS
Exploits0References11Affected Software1
Cvelist
Cvelistadded 2006/07/19 10:0 a.m.21 views

CVE-2006-3702

Multiple unspecified vulnerabilities in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, 10.1.0.5, and 10.2.0.2 have unknown impact and attack vectors, aka Oracle Vuln 1 DB06 in Export; 2 DB08, 3 DB09, 4 DB10, 5 DB11, 6 DB12, 7 DB13, 8 DB14, and 9 DBC01 for OCI; 10 DB16 for Query Rewrite/Summary Mgmt; ...

6.3AI score0.04234EPSS
Exploits0References13
CVE
CVEadded 2006/07/19 10:0 a.m.49 views

CVE-2006-3699

CVE-2006-3699 affects Oracle Database Core RDBMS components in versions 9.0.1.5 and 9.2.0.6. The description remains: an unspecified vulnerability with unknown impact/attack vectors (aka Oracle Vuln# DB02). The connected Nessus entry lists this CVE among July 2006 CPU fixes but provides no furthe...

9CVSS6.2AI score0.02556EPSS
Exploits0References11Affected Software1
Cvelist
Cvelistadded 2006/07/19 10:0 a.m.20 views

CVE-2006-3700

Multiple unspecified vulnerabilities in Oracle Database 9.2.0.6 and 10.1.0.4 have unknown impact and attack vectors, aka Oracle Vuln 1 DB04 for Web Distributed Authoring and Versioning DAV and 2 DB23 for XMLDB...

6.6AI score0.04842EPSS
Exploits0References11
CVE
CVEadded 2006/07/19 10:0 a.m.49 views

CVE-2006-3705

CVE-2006-3705 concerns Oracle Database 10.1.0.5 with two unnamed vulnerabilities (DB21: Statistics, DB22: Upgrade/Downgrade) that Oracle notes may be SQL injection in SYS.DBMS_STATS and SYS.DBMS_UPGRADE. The connected documents corroborate that these issues are related to SQL injection in SYS pac...

10CVSS7.4AI score0.03289EPSS
Exploits0References20Affected Software1
CVE
CVEadded 2006/07/19 10:0 a.m.51 views

CVE-2006-3703

CVE-2006-3703 concerns InterMedia for Oracle Database across versions 9.0.1.5, 9.2.0.6, and 10.1.0.4. The description in the NVD entry characterizes this as an unspecified vulnerability with unknown impact and attack vectors, and the connected data confirms InterMedia as the affected component wi...

9CVSS6.4AI score0.03321EPSS
Exploits0References11Affected Software1
CVE
CVEadded 2006/07/19 10:0 a.m.54 views

CVE-2006-3702

CVE-2006-3702 covers multiple Oracle Database vulnerabilities across versions 8.1.7.4, 9.0.1.5, 9.2.0.7, 10.1.0.5, and 10.2.0.2 with unspecified impact/attack vectors. Connected sources tie DB06 to a SQL injection-style issue in DBMS_EXPORT_EXTENSION, specifically GET_DOMAIN_INDEX_METADATA, which...

10CVSS6.4AI score0.04234EPSS
Exploits0References13Affected Software1
Tenable Nessus
Tenable Nessusadded 2006/07/19 12:0 a.m.42 views

Oracle Database Detection

Binary data oracledetect.nbin...

7.3AI score
Exploits0
CERT
CERTadded 2006/05/03 12:0 a.m.88 views

Oracle DBMS_EXPORT_EXTENSION package vulnerable to SQL injection

Overview A vulnerability in Oracle PL/SQL Export Extensions may allow an attacker to modify privileged database information. Description Oracle Extensions, ODCIIndex Interface, andODCIIndexGetMetadata Oracle extensions are used to create customized Oracle database constructs. An indextype is an...

10CVSS7.6AI score0.04234EPSS
Exploits0References6
NVD
NVDadded 2006/04/27 11:2 p.m.25 views

CVE-2006-2081

Oracle Database Server 10g Release 2 allows local users to execute arbitrary SQL queries via the GETDOMAININDEXMETADATA function in the DBMSEXPORTEXTENSION package. NOTE: this issue was originally linked to DB05 CVE-2006-1870, but a reliable third party has claimed that it is not the same issue...

4.6CVSS6.7AI score0.21556EPSS
Exploits3References12
Cvelist
Cvelistadded 2006/04/27 11:0 p.m.34 views

CVE-2006-2081

Oracle Database Server 10g Release 2 allows local users to execute arbitrary SQL queries via the GETDOMAININDEXMETADATA function in the DBMSEXPORTEXTENSION package. NOTE: this issue was originally linked to DB05 CVE-2006-1870, but a reliable third party has claimed that it is not the same issue...

6.7AI score0.21556EPSS
Exploits3References12
seebug.org
seebug.orgadded 2006/04/26 12:0 a.m.10 views

Oracle <= 10g Release 2 (DBMS_EXPORT_EXTENSION) Local SQL Exploit

No description provided by source. / 0day, description is wrong. /str0ke / / Fucking NON-0 day$ exploit for Oracle 10g 10.2.0.2.0 Patch your database now! by N1V1Hd $3c41r3 / CREATE OR REPLACE PACKAGE MYBADPACKAGE AUTHID CURRENTUSER IS FUNCTION ODCIIndexGetMetadata oindexinfo SYS.odciindexinfo,P3...

7.1AI score
Exploits0
Prion
Prionadded 2006/04/20 10:2 a.m.16 views

Sql injection

Unspecified vulnerability in Oracle Database Server 8.1.7.4, 9.0.1.5, and 9.2.0.6 has unknown impact and attack vectors in the Oracle Spatial component, aka Vuln DB09. NOTE: Oracle has not disputed reliable claims that this issue is SQL injection in MDSYS.PRVTIDX using the 1 EXECUTEINSERT, 2...

7.5CVSS7.6AI score0.03324EPSS
Exploits1References10Affected Software1
Prion
Prionadded 2006/04/20 10:2 a.m.21 views

Design/Logic Flaw

Unspecified vulnerability in Oracle Database Server 9.2.0.6 has unknown impact and attack vectors in the Advanced Replication component, aka Vuln DB02...

10CVSS6.5AI score0.04021EPSS
Exploits1References9Affected Software1
Rows per page
Query Builder