EUVD-2004-0454

Malware in sbrugna...

CVE-2025-46580

There is a code-related vulnerability in the GoldenDB database product. Attackers can access system tables to disrupt the normal operation of business SQL...

[SECURITY] [DSA 5795-1] python-sql security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5795-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 21, 2024 https://www.debian.org/security/faq -...

CVE-2024-23751

LlamaIndex aka llamaindex through 0.9.34 allows SQL injection via the Text-to-SQL feature in NLSQLTableQueryEngine, SQLTableRetrieverQueryEngine, NLSQLRetriever, RetrieverQueryEngine, and PGVectorSQLQueryEngine. For example, an attacker might be able to delete this year's student records via "Dro...

PT-2022-16041 · Cube-Js · Cube-Js

Name of the Vulnerable Software and Affected Versions: cube-js version 0.31.23 Description: The issue concerns a headless business intelligence platform where all authenticated clients could bypass SQL row-level security and run arbitrary SQL via the /v1/sql-runner endpoint. This was resolved in...

Debian: Security Advisory (DLA-2882-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Privilege Escalation

MySQL is vulnerable to Privilege Escalation. A flaw was discovered in the mysqlchangedb function when returning from SQL SECURITY INVOKER stored routines. An authenticated user could use this flaw to gain database privileges...

Ubuntu Update for mysql-dfsg-5.0 vulnerabilities USN-588-1

Ubuntu Update for Linux kernel vulnerabilities USN-588-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5881.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for mysql-dfsg-5.0 vulnerabilities USN-588-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

MySQL 4/5 - SUID Routine Miscalculation Arbitrary DML Statement Execution

source: https://www.securityfocus.com/bid/19559/info MySQL is prone to these vulnerabilities: - A privilege-elevation vulnerability. A user with privileges to execute SUID routines may gain elevated privileges by executing certain commands and code with higher privileges. - A security-bypass...

Hydra: MS SQL

This plugin runs Hydra to find MS SQL passwords by brute force. To use this plugin, enter the 'Logins file' and the 'Passwords file' under the 'Hydra NASL wrappers options' advanced settings block. TRUSTED...

Debian DSA-523-1 : www-sql - buffer overflow

Ulf Harnhammar discovered a buffer overflow vulnerability in www-sql, a CGI program which enables the creation of dynamic web pages by embedding SQL statements in HTML. By exploiting this vulnerability, a local user could cause the execution of arbitrary code by creating a web page and processing...