| 2018-11-26 | Oracle Secure Global Desktop Administration Console 4.4 Cross Site Scripting | Published |
| 2018-10-27 | Oracle Hyperion Planning 11.1.2.4 Cross Site Scripting | Published |
| 2018-10-23 | Oracle Siebel CRM 8.1.1 CSV Injection | Published |
| 2018-10-05 | Oracle Solaris Bind/Postinstall script for Bind package local root | Published |
| 2018-09-17 | Oracle VirtualBox Manager 5.2.18 r124319 Name Attribute Denial of Service | Published |
| 2018-08-14 | Oracle Weblogic Server Deserialization RCE Metasploit | Published |
| 2018-08-14 | Oracle GlassFish Server 4.1 Directory Traversal | Published |
| 2018-08-11 | Oracle Weblogic Server Deserialization Remote Code Execution | Published |
| 2018-07-24 | Oracle WebLogic Server 12.2.1.3. Takeover server exploit | Published |
| 2018-07-21 | Oracle Fusion Middleware 12c 12.2.1.3.0 WebLogic SAML Issues | Published |
| 2018-05-03 | Navicat < 12.0.27 Oracle Connection Overflow | Published |
| 2018-04-29 | Oracle Weblogic Server 10.3.6.0 / 12.1.3.0 / 12.2.1.2 / 12.2.1.3 Deserialization Remote Command Exec | Published |
| 2018-02-18 | Oracle Primavera P6 Enterprise Project Portfolio Management HTTP Response Splitting | Published |
| 2018-02-05 | Oracle Hospitality Simphony MICROS 2.9 Directory Traversal | Published |
| 2018-01-30 | Oracle WebLogic wls-wsat Component Deserialization Remote Code Execution | Published |
| 2018-01-25 | Oracle VirtualBox Guest To Host Escape | Published |
| 2018-01-24 | Oracle Financial Services Analytical Applications 7.3.5.x / 8.0.x XXE Injection / XSS | Published |
| 2018-01-18 | Oracle JDeveloper / Directory Traversal CVE-2017-10273 | Published |
| 2018-01-16 | Oracle E-Business Suite 12.1.3 / 12.2.x Open Redirect | Published |
| 2018-01-08 | Oracle WebLogic < 10.3.6 wls-wsat Component Deserialisation Remote Command Execution | Published |
| 2017-12-22 | Oracle MySQL UDF Payload Execution | Published |
| 2017-11-04 | Oracle PeopleSoft Enterprise PeopleTools Remote Code Execution | Published |
| 2017-11-03 | Oracle Java SE Wv8u131 Information Disclosure | Published |
| 2017-10-31 | Oracle Java SE Web Start jnlp XML External Entity Processing Information Disclosure | Published |
| 2017-10-28 | Oracle FCDB < = 10.5 Cross Site Scripting Vulnerability | Published |
| 2017-09-26 | Oracle 9i XDB 9.2.0.1 HTTP PASS Buffer Overflow | Published |
| 2017-07-02 | OSCI-Transport Library 1.2 Padding Oracle / Signature Wrapping / XXE Injection | Published |
| 2017-06-29 | Oracle Solaris 11.1 / 11.3 RSH Local Root Stack Clash Exploit | Published |
| 2017-05-18 | Oracle PeopleSoft XML External Entity / SYSTEM Remote Code Execution | Published |
| 2017-04-26 | Oracle VirtualBox Guest Adds 5.1.18 Unprivileged User-Mode Code Double-Free | Published |
| 2017-04-21 | Oracle E-Business Suite 12.2.3 SQL Injection | Published |
| 2017-04-21 | Oracle PeopleSoft HCM 9.2 XXE Injection | Published |
| 2017-04-21 | Oracle PeopleSoft ToolsRelease / ToolsReleaseDB / HCM SSRF | Published |
| 2017-04-21 | Oracle Java 64bit DLL Hijacking *youtube | Published |
| 2017-01-30 | Oracle Outside In VSDX 8.4.0 / 8.5.1 / 8.5.2 / 8.5.3 Use-After-Free | Published |
| 2017-01-23 | Oracle E-Business Suite 12.x Unconstrainted File Download | Published |
| 2017-01-23 | Oracle OpenJDK Runtime Environment Build 1.8.0_112-b15 Denial Of Service | Published |
| 2017-01-23 | Oracle PeopleSoft HCM 9.2 Cross Site Scripting | Published |
| 2016-12-24 | Apache mod_session_crypt 2.5 Padding Oracle | Published |