Lucene search
K

6 matches found

Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.183 views

Oracle DB SQL Injection Via SYS.LT.COMPRESSWORKSPACE

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB SQL Injection via SYS.LT.COMPRESSWORKSPACE', 'Description' = %q This module exploits an sql injection flaw in the COMPRESSWORKSPACE...

5.5CVSS7AI score0.1143EPSS
Exploits3
Circl
Circl
added 2018/05/29 3:50 p.m.8 views

CVE-2008-3982

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/sqli/oracle/ltcompressworkspace.rb 2025-02-06 03:13:39+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:08:31+00:00| seen|...

5.5CVSS5.5AI score0.1143EPSS
Exploits3References1
Metasploit
Metasploit
added 2009/07/28 1:43 p.m.38 views

Oracle DB SQL Injection via SYS.LT.COMPRESSWORKSPACE

This module exploits an sql injection flaw in the COMPRESSWORKSPACE procedure of the PL/SQL package SYS.LT. Any user with execute privilege on the vulnerable package can exploit this vulnerability. This module requires Metasploit: https://metasploit.com/download Current source:...

5.5CVSS7.6AI score0.1143EPSS
Exploits3
securityvulns
securityvulns
added 2008/11/14 12:0 a.m.64 views

Team SHATTER Security Advisory: Oracle Database multiple SQL Injection vulnerabilities in Workspace Manager

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Oracle Database multiple SQL Injection vulnerabilities in Workspace Manager November 12, 2008 Risk Level: High Affected versions: Oracle Database Server versions 9iR2, 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes...

5.5CVSS0.6AI score0.4181EPSS
Exploits7
Prion
Prion
added 2008/10/14 9:11 p.m.23 views

Design/Logic Flaw

Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.LT and WMSYS.LT, a different vulnerability than CVE-2008-3982 and...

5.5CVSS5.5AI score0.4181EPSS
Exploits7References5Affected Software3
CVE
CVE
added 2008/10/14 9:0 p.m.105 views

CVE-2008-3982

CVE-2008-3982 concerns SQL injection in Oracle Workspace Manager (Workspace Manager component) of Oracle Database. Connected sources document concrete exploits in SYS.LT.* procedures (COMPRESSWORKSPACE, MERGEWORKSPACE, REMOVEWORKSPACE) that allow an attacker with execute privilege to inject SQL, ...

5.5CVSS5.4AI score0.1143EPSS
Exploits3References5Affected Software3
Rows per page
Query Builder