Oracle Database Vulnerabilities


The following list includes some of the most critical Oracle Database vulnerabilities known to the security community. In any case you find that there is anything missing in this list, please let us know and we will update it as soon as possible.
  1. Oracle Database and Enterprise Manager Grid Control Code Execution Vulnerability
  2. Oracle Database Java Stored Procedure Race Condition Code Execution Vulnerability
  3. Oracle Multiple Products HTTP Request Buffer Overflow Vulnerability
  4. Oracle Database PL/SQL Injection Vulnerability
  5. Oracle Database Server Resource Manager Buffer Overflow
  6. Oracle Database SQL Injection vulnerability in LT.ROLLBACKWORKSPACE
  7. Oracle Database Local Untrusted Library Path Vulnerability (Technical Details)
  8. Oracle Database DBMS_AQELM Package Buffer Overflow Vulnerability
  9. Oracle Application Express Privilege Escalation Vulnerability
  10. Oracle 10g R2 PITRIG_DROPMETADATA Buffer Overflow Vulnerability
  11. Oracle Workspace Manager SQL Injection Flaw
  12. Oracle RDBMS Data packet DoS
  13. Oracle XMLDB FTP Service Audit Log Vulnerability
  14. Oracle CTX_DOC Package Multiple SQL Injection Flaws
  15. Oracle Database Buffer Overflow Vulnerabilities in Procedure DBMS_DRS.GET_PROPERTY (DB03)
  16. Oracle 9i/10g DBMS_EXPORT_EXTENSION SQL Injection Exploit (Exploit)
  17. Oracle Database Buffer Overflow (VERIFY_LOG)
  18. Oracle Database Public Procedures of XDB.DBMS_XMLSCHEMA{_INT} Buffer Overflows
  19. Oracle DBMS Access Control Bypass in Login
  20. Oracle Transparent Data Encryption Information Disclosure Vulnerability
  21. Oracle Database and Report Engine Multiple Vulnerabilities
  22. Oracle Products Multiple Vulnerabilities (TA05-194A)
  23. Oracle Fine Grained Auditing Issue
  24. Oracle DBMS_SCHEDULER SESSION_USER Vulnerability
  25. Oracle interMedia DoS
  26. Multiple SQL Injection Vulnerabilities in DBMS_CDC_SUBSCRIBE and DBMS_CDC_ISUBSCRIBE Packages
  27. Multiple SQL Injection Vulnerabilities in DBMS_METADATA Package
  28. SQL Injection in ALTER_MANUALLOG_CHANGE_SOURCE Procedure
  29. SQL Injection in CREATE_SCN_CHANGE_SET Procedure
  30. Oracle Database Server Directory Transversal
  31. Multiple Vulnerabilities in Oracle Database (Trigger, Extproc, Wrapped Procedures, PL/SQL Injection)
  32. Multiple Vulnerabilities in Oracle Database (Character Conversion, Extproc, Password Disclosure, ISQLPlus,TNS Listener)
  33. Oracle SQL Injection Possible Via CTXSYS.DRILOAD
  34. Oracle Database 9ir2 Interval Conversion Buffer Overflow
  35. Oracle iSQL*Plus Buffer Overflow (Long User ID)