Known Vulnerabilities for Mysql by Oracle
Listed below are 10 of the newest known vulnerabilities associated with "Mysql" by "Oracle".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-48242 json | Open ISES Tickets before 3.44.2 contains hardcoded MySQL database connection credentials (host, username, password, database ... | Not Provided | 2026-05-21 | 2026-05-21 |
| CVE-2026-48241 json | Open ISES Tickets before 3.44.2 contains hardcoded MySQL database credentials in loader.php (a public-facing database utility... | Not Provided | 2026-05-21 | 2026-05-21 |
| CVE-2026-48188 json | An improper Input Validation vulnerability in OTRS or ((OTRS)) Community Edition database layer module allows an unauthentic... | Not Provided | 2026-06-01 | 2026-06-01 |
| CVE-2026-45717 json | Budibase is an open-source low-code platform. Prior to 3.38.1, Budibase exposes a REST API for datasource management. The rou... | Not Provided | 2026-05-27 | 2026-05-27 |
| CVE-2026-44635 json | Kysely is a type-safe TypeScript SQL query builder. From 0.26.0 to 0.28.16, DefaultQueryCompiler.visitJSONPathLeg does not es... | Not Provided | 2026-05-27 | 2026-05-28 |
| CVE-2026-44521 json | elFinder is an open-source file manager for web, written in JavaScript using jQuery UI. Prior to 2.1.68, an authenticated SQL... | Not Provided | 2026-05-27 | 2026-05-27 |
| CVE-2026-44347 json | Warpgate is an open source SSH, HTTPS and MySQL bastion host for Linux. Prior to 0.23.3, the SSO flow does not validate the s... | Not Provided | 2026-05-12 | 2026-05-13 |
| CVE-2026-44047 json | An SQL injection vulnerability in the MySQL CNID backend in Netatalk 3.1.0 through 4.4.2 allows a remote authenticated attack... | Not Provided | 2026-05-21 | 2026-05-21 |
| CVE-2026-43917 json | Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.19.0 and earlier, the protectedProcedure middleware only ... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-42237 json | n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the fix for GHSA-f3f2-mcx... | Not Provided | 2026-05-04 | 2026-05-04 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Oracle | Mysql | 8.0.5 | |||
| Application | Oracle | Mysql | 8.0.4 | |||
| Application | Oracle | Mysql | 8.0.3 | |||
| Application | Oracle | Mysql | 8.0.25 | |||
| Application | Oracle | Mysql | 8.0.24 | |||
| Application | Oracle | Mysql | 8.0.23 | |||
| Application | Oracle | Mysql | 8.0.22 | |||
| Application | Oracle | Mysql | 8.0.21 | |||
| Application | Oracle | Mysql | 8.0.20 | |||
| Application | Oracle | Mysql | 8.0.2 | |||
| Application | Oracle | Mysql | 8.0.19 | |||
| Application | Oracle | Mysql | 8.0.18 | |||
| Application | Oracle | Mysql | 8.0.17 | |||
| Application | Oracle | Mysql | 8.0.16 | |||
| Application | Oracle | Mysql | 8.0.15 | |||
| Application | Oracle | Mysql | 8.0.14 | |||
| Application | Oracle | Mysql | 8.0.13 | |||
| Application | Oracle | Mysql | 8.0.12 | |||
| Application | Oracle | Mysql | 8.0.11 | |||
| Application | Oracle | Mysql | 8.0.10 |