SQL injection remains one of the most exploited vulnerabilities in web applications, and Oracle APEX is no exception. Despite APEX’s built-in protections, poor use of dynamic PL/SQL and configuration mistakes can expose your application to attacks. In this article, we explore advanced techniques to prevent SQL injection attacks in APEX, going beyond basic measures like [...]
Hiding URL format in APEX is essential for enhancing security and preventing the exposure of sensitive information. Oracle Application Express (APEX) uses a default URL structure that can reveal critical details, making it a potential target for attacks. In this article, we explore effective strategies to conceal the URL format in APEX and strengthen application [...]
With the release of Oracle REST Data Services (ORDS) 24.4, Oracle has introduced changes aimed at improving security and performance, including the removal of HTTP/1.0 support. While these updates are a step forward, they’ve caused challenges for environments that rely on Tomcat and Apache HTTP Server (httpd) integration via AJP (Apache JServ Protocol). In this [...]
