CVE-2026-40833 Authenticated SQLi in saveDashboardLayout function

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dash.php files saveDashboardLayout function due to improper neutralization of special elements in a SQL INSERT command allowing for reading the whole database and inserting entries into a non...

Oracle PeopleSoft security vulnerabilities

Oracle PeopleSoft is a corporate human capital management solution developed by Oracle Corporation in the United States. This product offers functions such as human capital management, financial management, and supplier relationship management. PeopleSoft Enterprise HCM Human Resources is one of...

AZL-74420 CVE-2025-71072 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: shmem: fix recovery on rename failures mapletree insertions can fail if we are seriously short on memory; simpleoffsetrename does not recover well if it runs into that. The same goes for simpleoffsetrenameexchange. Moreover,...

CVE-2025-71072

CVE-2025-71072 : In the Linux kernel, a rename/recovery issue in shmem was fixed. The root cause affected how maple_tree insertions and simple_offset_rename() pathways handled memory pressure and failure paths, including simple_offset_rename_exchange(). The fix involves how shmem_rename2() pre-in...

CVE-2023-54224

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix lockdep splat and potential deadlock after failure running delayed items When running delayed items we are holding a delayed node's mutex and then we will attempt to modify a subvolume btree to insert/update/delete the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the repeated insertion of classes into eltree in hfsc, which could lead to an infinite loop or UAF...

UBUNTU-CVE-2021-47190

In the Linux kernel, the following vulnerability has been resolved: perf bpf: Avoid memory leak from perfenvinsertbtf perfenvinsertbtf doesn't insert if a duplicate BTF id is encountered and this causes a memory leak. Modify the function to return a success/error value and then free the memory if...

CVE-2024-2929

A memory corruption vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized code to the software by corrupting the memory triggering an access violation. Once inside, the threat actor can run harmful code on the system. This...

Oracle Audit Vault and Database Firewall Security Vulnerabilities

Oracle Audit Vault and Database Firewall is a database security solution from Oracle Corporation. A security vulnerability exists in Oracle Audit Vault and Database Firewall versions 20.1 through 20.9. An attacker could exploit the vulnerability to perform unauthorized updates, insertions, or...

Efficiency

Lines of code Vulnerability details Depending on the size of your heap, the while loop may execute a significant number of times. Consider whether you can optimize this loop for performance, especially if you expect a large number of insertions. Assessed type Loop --- The text was updated...

Improper Access Control

openjdk is vulnerable to improper access control. The vulnerability allows an attacker to perform unauthorized updates, insertions or deletions of some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data...

Oracle PeopleSoft Enterprise信息泄露漏洞

Oracle PeopleSoft Products is an enterprise human capital management solution from Oracle Corporation. An information disclosure vulnerability exists in the Supplier Portal component of Oracle PeopleSoft Enterprise SCM version 9.2. An attacker could compromise Oracle PeopleSoft Enterprise SCM by...

Oracle Database Server has an unspecified vulnerability (CNVD-2021-54733)

Oracle Database Server is an object-one relational database management system that provides an open, comprehensive, and integrated approach to information management.Oracle Database Server versions 12.1.0.2, 12.2.0.1, and 19c contain a security vulnerability in the Oracle Database - Enterprise...

Oracle Database Server 输入验证错误漏洞

Oracle Database Server is an object-one relational database management system that provides an open, comprehensive, and integrated approach to information management.Oracle Database Server versions 12.1.0.2, 12.2.0.1, and 19c contain a security vulnerability in the Oracle Database - Enterprise...

Oracle E-Business Suite Oracle One-to-One Fulfillment 安全漏洞

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management, and so on, a collection of management software, is a seamless integration of a management suite. Oracle One-to-O...

Oracle Knowledge Unauthorized Operation Vulnerability

Oracle Knowledge is the United States Oracle Oracle company's set of knowledge management solutions. Information Manager Console is one of the information management console components. A security vulnerability exists in the Information Manager Console component in Oracle Knowledge, versions 8.6....

Unspecified Vulnerability in Oracle PeopleSoft Enterprise PeopleTools (CNVD-2020-17124)

Oracle PeopleSoft Enterprise PeopleTools provides a comprehensive set of development tools that support the development and runtime of PeopleSoft applications. An unspecified vulnerability exists in Oracle PeopleSoft Enterprise PeopleTools, which could be exploited by an attacker to perform an...

Oracle E-Business Suite Unauthorized Access Vulnerability (CNVD-2020-04020)

Oracle E-Business Suite is in the original Application ERP based on the expansion, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on a variety of management software collection, is seamlessly integrated with a management...

Oracle E-Business Suite Unauthorized Access Vulnerability (CNVD-2020-04019)

Oracle E-Business Suite is based on the original Application ERP expansion, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on a variety of management software collection, is a seamless integration of a management suite. Oracle...

Oracle Primavera P6 Enterprise Project Portfolio Management Unauthorized Access Vulnerability

Oracle Primavera P6 Enterprise Project Portfolio Management is a comprehensive project portfolio management PPM solution that includes role-specific functionality to meet the needs, responsibilities, and skills of each team member. The Web Access component in Oracle Primavera P6 Enterprise Projec...