9 matches found
CVE-2025-61028
An issue in the timettodt component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...
CVE-2024-57618
An issue in the bindcolexp component of MonetDB Server v11.47.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...
PT-2025-3485 · Monetdb · Monetdb Server
Name of the Vulnerable Software and Affected Versions: MonetDB Server version 11.47.11 Description: An issue in the bind col exp component allows attackers to cause a Denial of Service DoS via crafted SQL statements. Recommendations: For MonetDB Server version 11.47.11, consider disabling the bin...
IBM Db2 注入漏洞
IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM Db2 suffers from an injection vulnerability that can be exploited by an authenticated attacker to...
Dolibarr ERP/CRM Security Breach
Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A security vulnerability exists in Dolibarr ERP/CRM version...
The vulnerability of the Visual Difference Application component of the SAP Business Objects Business Intelligence Platform allows a perpetrator to disclose protected information.
The vulnerability of the Visual Difference Application component in the SAP Business Objects Business Intelligence Platform exists due to the failure to take measures to neutralize special elements used in SQL queries. Exploiting this vulnerability can allow a malicious actor, operating remotely,...
mariadb: use-after-poison when complex conversion is involved in blob
A flaw was found in the MariaDB Server, where it contains a use-after-free in the component, Itemfuncin::cleanup. This issue is exploited via specially crafted SQL statements, affecting availability...
SQLite 缓冲区错误漏洞
SQLite is a self-sufficient, serverless, zero-configuration, transactional SQL database engine. idxGetTableInfo function in SQLite version 3.36.0 is vulnerable to a segmentation error. An attacker could exploit the vulnerability via a specially crafted SQL query to cause a denial of service...
SQLite Memory Corruption Vulnerability in Multiple Apple Products
Apple iOS and so on are the products of the United States Apple Apple. Apple iOS is a set of operating systems developed for mobile devices; tvOS is a set of smart TV operating system. SQLite is one of the set of C-based open source embedded relational database management components developed by...