Medium
CVE-2026-21931
Vulnerability in the Oracle APEX Sample Applications product of Oracle APEX (component: Brookstrut Sample App). Supported versions that are affected are 23.2.0, 23.2.1, 24.1.0, 24.2.0 and 24.2.1. E…
Tag: Oracle APEX
All CVEs associated with "Oracle APEX". Page 1/1 • 2 CVEs.
About “Oracle APEX”
A curated feed of “Oracle APEX”-related CVEs appears below. We currently track 2 CVEs for this tag (all time). In the last 365 days, 1 were published. Average CVSS is 5.7 (all time; 5.4 over 365d), and 0% are rated High/Critical (all time). Top CWEs (all time): CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection').
In our taxonomy this topic maps to a LOW impact class. Integration platforms and ESBs bridge systems. Patch runtimes and connectors, restrict admin consoles, validate signer keys, and monitor flows. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.
Support & lifecycle: oracle-apex
This table shows recent release cycles and their projected end-of-life. Data source: endoflife.date.
| Cycle | Release | Latest | EOL | LTS |
|---|---|---|---|---|
| 26.1 | - | |||
| 24.2 | - | |||
| 24.1 | - | |||
| 23.2 | - | Expired | ||
| 23.1 | - | Expired | ||
| 22.2 | - | Expired | ||
| 22.1 | - | Expired | ||
| 21.2 | - | Expired | ||
| 21.1 | - | Expired | ||
| 20.2 | - | Expired | ||
| 20.1 | - | Expired | ||
| 19.2 | - | Expired | ||
| 19.1 | - | Expired | ||
| 18.2 | - | Expired | ||
| 18.1 | - | Expired | ||
| 5.1 | - | Expired |
Maintained Soon (≤ 180 days) Expired
Subscribe lifecycle: RSS · RSS (expired) · ICS
Subscribe CVEs: RSS for “Oracle APEX”
CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).
CVSS ≥ 0.0
2026-01-20
2007-03-07
Medium
CVE-2006-7138
SQL injection vulnerability in wwv_flow_utilities.gen_popup_list in the WWV_FLOW_UTILITIES package for Oracle APEX/HTMLDB before 2.2 allows remote authenticated users to execute arbitrary SQL by modi…