Description

SQL injection vulnerability in Workspace Manager for Oracle Database before OWM 10.2.0.4.1, OWM 10.1.0.8.0, and OWM 9.2.0.8.0 allows attackers to execute arbitrary SQL commands via the FINDRICSET procedure in the LT package. NOTE: this is probably covered by CVE-2007-5510, but there are insufficient details to be certain.

Remediation

References

CVE-2007-5511

Related Vulnerabilities

Envoy Proxy Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2019-18836)

OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2178)

Oracle JRE CVE-2011-3546 Vulnerability (CVE-2011-3546)

WordPress Plugin SEO Redirection-301 Redirect Manager Cross-Site Request Forgery (7.8)

Drupal Core 8.4.x Remote Code Execution (8.4.0 - 8.4.7)

Severity

Medium

Classification

CVE-2007-5511 CWE-138

Tags

Missing Update Known Vulnerabilities