Proof of concept overview on how the DBMS_REDACT Dynamic Data Masking security feature in Oracle can be bypassed. Affected versions include 19c and 21c.
>> CATEGORY: exploit
Nexxt Router Firmware version 42.103.1.5095 authenticated remote code execution exploit that enables telnetd.
Proof of concept overview on how the DBMS_REDACT Dynamic Data Masking security feature in Oracle can be bypassed. Affected versions include 19c and 21c.
BDWeb-Link LMS version 1.11.5 suffers from a remote SQL injection vulnerability.
SugarCRM versions up to 12.2.0 suffer from a remote shell upload vulnerability.
Oracle versions 12.1.0.2, 12.2.0.1, and 19c suffer from a Unified Audit Policy bypass vulnerability.
The crewjam/saml go library is vulnerable to an authentication bypass when processing SAML responses containing multiple Assertion elements.
A design flaw in the Chrome Synchronous Mojo message handling introduces unexpected reentrancy and allows for multiple use-after-free vulnerabilities.
This archive contains all of the 82 exploits added to Packet Storm in December, 2022.
Complete comprehensive archive of all 1,384 exploits added to Packet Storm in 2022.