Proof of concept overview on how the DBMS_REDACT Dynamic Data Masking security feature in Oracle can be bypassed. Affected versions include 19c and 21c.
Nexxt Router Firmware version 42.103.1.5095 authenticated remote code execution exploit that enables telnetd.
Proof of concept overview on how the DBMS_REDACT Dynamic Data Masking security feature in Oracle can be bypassed. Affected versions include 19c and 21c.
BDWeb-Link LMS version 1.11.5 suffers from a remote SQL injection vulnerability.
SugarCRM versions up to 12.2.0 suffer from a remote shell upload vulnerability.
Oracle versions 12.1.0.2, 12.2.0.1, and 19c suffer from a Unified Audit Policy bypass vulnerability.
The crewjam/saml go library is vulnerable to an authentication bypass when processing SAML responses containing multiple Assertion elements.
A design flaw in the Chrome Synchronous Mojo message handling introduces unexpected reentrancy and allows for multiple use-after-free vulnerabilities.
This archive contains all of the 82 exploits added to Packet Storm in December, 2022.
Complete comprehensive archive of all 1,384 exploits added to Packet Storm in 2022.