CLSA-2026-1776879643 mysql: Fix of CVE-2019-2627

CVE-2019-2627: fix crash when mysql.user table has missing password column...

UBUNTU-CVE-2026-28224

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, when the server receives an opcryptkeycallback packet without prior authentication, the portservercryptcallback handler is not initialized, resulting in a null pointer dereference and...

EUVD-2015-1059

Malware in sbrugna...

sqlite security update

An update is available for sqlite. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list SQLite is a C library that implements an SQL database engine. A large subset ...

Linux Distros Unpatched Vulnerability : CVE-2025-46337

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a...

HP Security Manager – Potential Remote Code Execution

HP Security Manager is potentially vulnerable to Remote Code Execution due to the use of Microsoft OLE Database library version 18.4 for Microsoft’s SQL Server Express and Microsoft’s SQL Server. HP has provided a software update for potentially affected products...

Linux Distros Unpatched Vulnerability : CVE-2025-54119

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping ...

MAL-2025-22972 Malicious code in idid-db (npm)

The package idid-db was found to contain malicious code...

Race Condition

Overview std/database/sql is a Go standard library package std/database/sql Affected versions of this package are vulnerable to Race Condition. Go Vulnerability Report: Cancelling a query e.g. by cancelling the context passed to one of the query methods during a call to the Scan method of the...

Updated php-adodb packages fix security vulnerability

ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and...

CVE-2015-10045

A vulnerability, which was classified as critical, was found in tutrantta projecttodolist. Affected is the function getAffectedRows/where/insert/update in the library library/Database.php. The manipulation leads to sql injection. The name of the patch is 194a0411bbe11aa4813f13c66b9e8ea403539141. ...

DEBIAN-CVE-2025-46337

ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and...

UBUNTU-CVE-2025-46337

ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and...

Integer overflow in the firebird and dblib quoters causing OOB writes

...

CVE-2024-43300

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Bert Kößler Movie Database allows Stored XSS.This issue affects Movie Database: from n/a through 1.0.11...

GHSA-PMH2-WPJM-FJ45 mysql2 vulnerable to Prototype Pollution

Versions of the package mysql2 before 3.9.8 are vulnerable to Prototype Pollution due to improper user input sanitization passed to fields and tables when using nestTables...

CVE-2024-28940

Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability...

SUSE CVE-2006-0147

Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including 1 Mantis, 2 PostNuke, 3 Moodle, 4 Cacti, 5 Xaraya, 6 PhpOpenChat, possibly 7 MAXdev MD-Pro, and 8 Simplog, allows remote attackers to execute arbitrary PHP...

PT-2023-10224 · Unknown · Tutranta Project Todolist

Name of the Vulnerable Software and Affected Versions: tutranta project todolist affected versions not specified Description: A critical issue was found in the tutrantta project todolist, affecting the getAffectedRows/where/insert/update function in the library/Database.php library. This issue...

OESA-2022-2075 freetds security update

FreeTDS is an open source implementation of the TDS Tabular Data Stream protocol used by these databases for their own clients. It supports many different flavors of the protocol and three APIs to access it. FreeTDS includes call level interfaces for DB-Lib, CT-Lib, and ODBC. Security Fixes:...