Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
postgresql postgresql vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2019-19015
An issue exists in TitanHQ WebTitan prior to 5.18. The proxy service (which is typically exposed to all users) allows connections to the internal PostgreSQL database of the appliance. By connecting to the database through the proxy (without password authentication), an attacker i...
Titanhq Webtitan
10
CVSSv2
CVE-2017-7494
Samba since version 3.5.0 and prior to 4.6.4, 4.5.10 and 4.4.14 is vulnerable to remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.
Samba Samba
Debian Debian Linux 8.0
2 EDB exploits
2 Nmap scripts
123 Github repositories
3 Articles
10
CVSSv2
CVE-2013-1902
PostgreSQL, 9.2.x prior to 9.2.4, 9.1.x prior to 9.1.9, 9.0.x prior to 9.0.13, 8.4.x prior to 8.4.17, and 8.3.x prior to 8.3.23 generates insecure temporary files with predictable filenames, which has unspecified impact and attack vectors related to "graphical installers for...
Postgresql Postgresql 9.2.3
Postgresql Postgresql 9.2.2
Postgresql Postgresql 9.2.1
Postgresql Postgresql 9.2
Postgresql Postgresql 9.1.1
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.0.1
Postgresql Postgresql 9.0.2
Postgresql Postgresql 9.0.10
Postgresql Postgresql 9.0.8
Postgresql Postgresql 9.0.7
Postgresql Postgresql 9.0.9
Postgresql Postgresql 9.0.11
Postgresql Postgresql 9.0.12
Postgresql Postgresql 9.0
10
CVSSv2
CVE-2013-1903
PostgreSQL, possibly 9.2.x prior to 9.2.4, 9.1.x prior to 9.1.9, 9.0.x prior to 9.0.13, 8.4.x prior to 8.4.17, and 8.3.x prior to 8.3.23 incorrectly provides the superuser password to scripts related to "graphical installers for Linux and Mac OS X," which has unspecifie...
Postgresql Postgresql 9.2.3
Postgresql Postgresql 9.2.2
Postgresql Postgresql 9.2.1
Postgresql Postgresql 9.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.1.1
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.0.12
Postgresql Postgresql 9.0
Postgresql Postgresql 9.0.5
Postgresql Postgresql 9.0.3
Postgresql Postgresql 9.0.6
Postgresql Postgresql 9.0.4
Postgresql Postgresql 9.0.1
Postgresql Postgresql 9.0.2
Postgresql Postgresql 9.0.10
10
CVSSv2
CVE-2007-3279
PostgreSQL 8.1 and probably later versions, when the PL/pgSQL (plpgsql) language has been created, grants certain plpgsql privileges to the PUBLIC domain, which allows remote malicious users to create and execute functions, as demonstrated by functions that perform local brute-fo...
Postgresql Postgresql 8.1
10
CVSSv2
CVE-2005-3656
Multiple format string vulnerabilities in logging functions in mod_auth_pgsql prior to 2.0.3, when used for user authentication against a PostgreSQL database, allows remote unauthenticated malicious users to execute arbitrary code, as demonstrated via the username.
Guiseppe Tanzilli And Matthias Eckermann Mod Auth Pgsql 0.9.5
Guiseppe Tanzilli And Matthias Eckermann Mod Auth Pgsql 0.9.6
Guiseppe Tanzilli And Matthias Eckermann Mod Auth Pgsql
10
CVSSv2
CVE-2003-0500
SQL injection vulnerability in the PostgreSQL authentication module (mod_sql_postgres) for ProFTPD prior to 1.2.9rc1 allows remote malicious users to execute arbitrary SQL and gain privileges by bypassing authentication or stealing passwords via the USER name.
Proftpd Project Proftpd 1.2.9 Rc1
1 EDB exploit
10
CVSSv2
CVE-2002-1399
Unknown vulnerability in cash_out and possibly other functions in PostgreSQL 7.2.1 and previous versions, and possibly later versions prior to 7.2.3, with unknown impact, based on an invalid integer input which is processed as a different data type, as demonstrated using cash_out...
Postgresql Postgresql 6.3.2
Postgresql Postgresql 7.2
Postgresql Postgresql 7.2.1
Postgresql Postgresql 7.1.2
Postgresql Postgresql 7.1.3
Postgresql Postgresql 7.1
Postgresql Postgresql 7.1.1
Postgresql Postgresql 6.5.3
Postgresql Postgresql 7.0.3
9.3
CVSSv2
CVE-2017-0144
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote malicious users to execute arbitrary code v...
Microsoft Server Message Block 1.0
6 EDB exploits
52 Github repositories
3 Articles
9.3
CVSSv2
CVE-2009-2356
Multiple stack-based buffer overflows in the pgsqlQuery function in NullLogic Groupware 1.2.7, when PostgreSQL is used, might allow remote malicious users to execute arbitrary code via input to the (1) POP3, (2) SMTP, or (3) web component that triggers a long SQL query.
Dan Cahill Nulllogic Groupware 1.2.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »