Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tom lane vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2003-0901
Buffer overflow in to_ascii for PostgreSQL 7.2.x, and 7.3.x prior to 7.3.4, allows remote malicious users to execute arbitrary code.
Postgresql Postgresql 7.3.3
Postgresql Postgresql 7.2
Postgresql Postgresql 7.3
Postgresql Postgresql 7.2.3
Postgresql Postgresql 7.2.2
Postgresql Postgresql 7.3.2
Postgresql Postgresql 7.2.4
Postgresql Postgresql 7.3.1
Postgresql Postgresql 7.2.1
NA
CVE-2012-3437
The Magick_png_malloc function in coders/png.c in ImageMagick 6.7.8 and previous versions does not use the proper variable type for the allocation size, which might allow remote malicious users to cause a denial of service (crash) via a crafted PNG file that triggers incorrect me...
Imagemagick Imagemagick 6.7.8-6
8.8
CVSSv3
CVE-2016-0766
PostgreSQL prior to 9.1.20, 9.2.x prior to 9.2.15, 9.3.x prior to 9.3.11, 9.4.x prior to 9.4.6, and 9.5.x prior to 9.5.1 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows malicious users to gain privileges via unspecif...
Postgresql Postgresql 9.5
Postgresql Postgresql
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
NA
CVE-2009-2347
Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 up to and including 3.8.2, 3.9, and 4.0 allow context-dependent malicious users to execute arbitrary code via a TIFF image with large (1) width and (2) height values, which triggers a heap-based buff...
Libtiff Libtiff 3.8.0
Libtiff Libtiff 3.8.1
Libtiff Libtiff 3.8.2
Libtiff Libtiff 4.0
Libtiff Libtiff 3.9
6.5
CVSSv3
CVE-2020-1720
A flaw was found in PostgreSQL's "ALTER ... DEPENDS ON EXTENSION", where sub-commands did not perform authorization checks. An authenticated attacker could use this flaw in certain configurations to perform drop objects such as function, triggers, et al., leading t...
Postgresql Postgresql
Redhat Decision Manager 7.0
Redhat Enterprise Linux 8.0
Redhat Software Collections -
NA
CVE-2006-2753
SQL injection vulnerability in MySQL 4.1.x prior to 4.1.20 and 5.0.x prior to 5.0.22 allows context-dependent malicious users to execute arbitrary SQL commands via crafted multibyte encodings in character sets such as SJIS, BIG5, and GBK, which are not properly handled when the m...
Mysql Mysql 5.0.5
Mysql Mysql 5.0.10
Mysql Mysql 5.0.0
Mysql Mysql 5.0.15
Mysql Mysql 5.0.17
Mysql Mysql 4.1.13
Mysql Mysql 5.0.3
Mysql Mysql 4.1.15
Mysql Mysql 4.1.8
Mysql Mysql 4.1.14
Mysql Mysql 4.1.12
Mysql Mysql 4.1.10
Mysql Mysql 5.0.2
Mysql Mysql 5.0.20
Mysql Mysql 5.0.1
Mysql Mysql 4.1.0
Mysql Mysql 5.0.4
Mysql Mysql 4.1.3
Mysql Mysql 5.0.16
Mysql Mysql 4.1.2
Oracle Mysql 4.1.1
Oracle Mysql 4.1.4
2.2
CVSSv3
CVE-2019-10209
Postgresql, versions 11.x prior to 11.5, is vulnerable to a memory disclosure in cross-type comparison for hashed subplan.
Postgresql Postgresql
NA
CVE-2014-0067
The "make check" command for the test suites in PostgreSQL 9.3.3 and previous versions does not properly invoke initdb to specify the authentication requirements for a database cluster to be used for the tests, which allows local users to gain privileges by leveraging a...
Apple Mac Os X 10.10.4
Apple Mac Os X Server 5.0.3
Postgresql Postgresql 8.4.8
Postgresql Postgresql 9.0.11
Postgresql Postgresql 9.2.1
Postgresql Postgresql 9.1.4
Postgresql Postgresql 8.4.4
Postgresql Postgresql 8.4.1
Postgresql Postgresql 9.0.13
Postgresql Postgresql 9.3
Postgresql Postgresql 8.4.18
Postgresql Postgresql 9.0.7
Postgresql Postgresql 9.0.6
Postgresql Postgresql
Postgresql Postgresql 9.3.2
Postgresql Postgresql 8.4.9
Postgresql Postgresql 8.4.3
Postgresql Postgresql 9.2.6
Postgresql Postgresql 9.1
Postgresql Postgresql 8.4.10
Postgresql Postgresql 9.2.3
Postgresql Postgresql 9.0.10
8.8
CVSSv3
CVE-2019-10208
A flaw exists in postgresql versions 9.4.x prior to 9.4.24, 9.5.x prior to 9.5.19, 9.6.x prior to 9.6.15, 10.x prior to 10.10 and 11.x prior to 11.5 where arbitrary SQL statements can be executed given a suitable SECURITY DEFINER function. An attacker, with EXECUTE permission on ...
Postgresql Postgresql
NA
CVE-2010-2630
The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly validate the data types of codec-specific tags that have an out-of-order position in a TIFF file, which allows remote malicious users to cause a denial of service (application crash) via a crafted file, a different...
Libtiff Libtiff 3.9.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »