Oracle DB vulnerabilities: the missing pentester handbook