Oracle » Database Server : Security Vulnerabilities, CVEs, Published In 2004 (Sql injection)
SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS default triggers in Oracle 9i and 10g allows remote attackers to execute arbitrary SQL commands via the new.table_name or new.column_name parameters.
Max CVSS
6.5
EPSS Score
0.09%
Published
2004-12-23
Updated
2017-07-11
1 vulnerabilities found