Unrated severityNVD Advisory· Published May 2, 2005· Updated Apr 16, 2026
CVE-2005-1178
CVE-2005-1178
Description
SQL injection vulnerability in Oracle Forms 10g allows remote attackers to execute arbitrary SQL commands via the Query/Where feature.
Affected products
7cpe:2.3:a:oracle:forms:10g:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:oracle:forms:10g:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:forms:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:forms:4.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:forms:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:forms:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:forms:6i:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:forms:9i:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.red-database-security.com/wp/sql_injection_forms_us.pdfnvdVendor Advisory
- www.securiteam.com/securitynews/5HP0I0UFFI.htmlnvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/20080nvd
News mentions
0No linked articles in our index yet.