Количество 11
Количество 11
GHSA-h6p9-49w4-8mm8
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.
CVE-2018-16850
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.
CVE-2018-16850
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.
CVE-2018-16850
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.
CVE-2018-16850
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL inject ...
openSUSE-SU-2018:4031-1
Security update for postgresql10
openSUSE-SU-2018:3893-1
Security update for postgresql10
SUSE-SU-2018:3942-1
Security update for postgresql10
SUSE-SU-2018:3770-2
Security update for postgresql10
SUSE-SU-2018:3770-1
Security update for postgresql10
BDU:2019-01225
Уязвимость утилит pg_upgrade и pg_dump системы управления базами данных PostgreSQL, позволяющая нарушителю выполнить произвольные SQL-команды
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-h6p9-49w4-8mm8 postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges. | CVSS3: 9.8 | 0% Низкий | больше 3 лет назад |
 | CVE-2018-16850 postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges. | CVSS3: 9.8 | 0% Низкий | почти 7 лет назад |
 | CVE-2018-16850 postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges. | CVSS3: 8 | 0% Низкий | почти 7 лет назад |
 | CVE-2018-16850 postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges. | CVSS3: 9.8 | 0% Низкий | почти 7 лет назад |
| CVE-2018-16850 postgresql before versions 11.1, 10.6 is vulnerable to a to SQL inject ... | CVSS3: 9.8 | 0% Низкий | почти 7 лет назад |
 | openSUSE-SU-2018:4031-1 Security update for postgresql10 | 0% Низкий | почти 7 лет назад | |
| openSUSE-SU-2018:3893-1 Security update for postgresql10 | 0% Низкий | почти 7 лет назад | |
| SUSE-SU-2018:3942-1 Security update for postgresql10 | 0% Низкий | почти 7 лет назад | |
| SUSE-SU-2018:3770-2 Security update for postgresql10 | 0% Низкий | почти 7 лет назад | |
| SUSE-SU-2018:3770-1 Security update for postgresql10 | 0% Низкий | почти 7 лет назад | |
 | BDU:2019-01225 Уязвимость утилит pg_upgrade и pg_dump системы управления базами данных PostgreSQL, позволяющая нарушителю выполнить произвольные SQL-команды | CVSS3: 9.8 | 0% Низкий | больше 7 лет назад |
Уязвимостей на страницу