Description
Extproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.
Remediation
References
Related Vulnerabilities
WordPress Plugin Quick Buy For Woocommerce Arbitrary File Disclosure (2.0)
Python Integer Overflow or Wraparound Vulnerability (CVE-2022-37454)
WordPress Plugin SP Project & Document Manager Arbitrary File Upload (4.22)
WordPress Plugin CM Download Manager Cross-Site Scripting (2.7.0)
WordPress Plugin RSS Redirect & Feedburner Alternative Unspecified Vulnerability (1.9)