Cybernews

Christmas gift: method to exploit MongoBleed vulnerability leaking MongoDB secrets showcased on web

Weirdly, a public exploit and technical details are available online, showing how attackers can trigger the vulnerability and remotely extract secrets, credentials, and other sensitive data.
Computerworld

Oracle releases, then pulls, zero-day database exploit code

Oracle Corp. appears to have accidentally released details about an unpatched security vulnerability in its database software, including sample code that could be used to exploit the problem. Details ...