Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
postgresql postgresql 9.0 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2016-0768
PostgreSQL PL/Java after 9.0 does not honor access controls on large objects.
Postgresql Postgresql
4.6
CVSSv2
CVE-2014-0067
The "make check" command for the test suites in PostgreSQL 9.3.3 and previous versions does not properly invoke initdb to specify the authentication requirements for a database cluster to be used for the tests, which allows local users to gain privileges by leveraging a...
Apple Mac Os X 10.10.4
Apple Mac Os X Server 5.0.3
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.0.8
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.0.6
Postgresql Postgresql 9.0.5
Postgresql Postgresql 9.0.10
Postgresql Postgresql 9.0
Postgresql Postgresql 8.4.3
Postgresql Postgresql 8.4.2
Postgresql Postgresql 8.4.16
Postgresql Postgresql 8.4.1
Postgresql Postgresql 9.3.2
Postgresql Postgresql 9.1.11
Postgresql Postgresql 9.1.10
Postgresql Postgresql 9.2
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.1
10
CVSSv2
CVE-2013-1903
PostgreSQL, possibly 9.2.x prior to 9.2.4, 9.1.x prior to 9.1.9, 9.0.x prior to 9.0.13, 8.4.x prior to 8.4.17, and 8.3.x prior to 8.3.23 incorrectly provides the superuser password to scripts related to "graphical installers for Linux and Mac OS X," which has unspecifie...
Postgresql Postgresql 9.2.3
Postgresql Postgresql 9.2.2
Postgresql Postgresql 9.2.1
Postgresql Postgresql 9.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.1.1
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.0.12
Postgresql Postgresql 9.0
Postgresql Postgresql 9.0.5
Postgresql Postgresql 9.0.3
Postgresql Postgresql 9.0.6
Postgresql Postgresql 9.0.4
Postgresql Postgresql 9.0.1
Postgresql Postgresql 9.0.2
Postgresql Postgresql 9.0.10
6.5
CVSSv2
CVE-2013-1899
Argument injection vulnerability in PostgreSQL 9.2.x prior to 9.2.4, 9.1.x prior to 9.1.9, and 9.0.x prior to 9.0.13 allows remote malicious users to cause a denial of service (file corruption), and allows remote authenticated users to modify configuration settings and execute ar...
Postgresql Postgresql 9.2.1
Postgresql Postgresql 9.2
Postgresql Postgresql 9.2.2
Postgresql Postgresql 9.2.3
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.1
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.0.8
Postgresql Postgresql 9.0.7
Postgresql Postgresql 9.0.1
Postgresql Postgresql 9.0.11
Postgresql Postgresql 9.0.10
Postgresql Postgresql 9.0
Postgresql Postgresql 9.0.3
Postgresql Postgresql 9.0.9
Postgresql Postgresql 9.0.4
2 Metasploit modules
1 Article
4
CVSSv2
CVE-2013-1901
PostgreSQL 9.2.x prior to 9.2.4 and 9.1.x prior to 9.1.9 does not properly check REPLICATION privileges, which allows remote authenticated users to bypass intended backup restrictions by calling the (1) pg_start_backup or (2) pg_stop_backup functions.
Postgresql Postgresql 9.2.2
Postgresql Postgresql 9.2.3
Postgresql Postgresql 9.2.1
Postgresql Postgresql 9.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.1.1
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 10.04
10
CVSSv2
CVE-2013-1902
PostgreSQL, 9.2.x prior to 9.2.4, 9.1.x prior to 9.1.9, 9.0.x prior to 9.0.13, 8.4.x prior to 8.4.17, and 8.3.x prior to 8.3.23 generates insecure temporary files with predictable filenames, which has unspecified impact and attack vectors related to "graphical installers for...
Postgresql Postgresql 9.2.3
Postgresql Postgresql 9.2.2
Postgresql Postgresql 9.2.1
Postgresql Postgresql 9.2
Postgresql Postgresql 9.1.1
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.0.1
Postgresql Postgresql 9.0.2
Postgresql Postgresql 9.0.10
Postgresql Postgresql 9.0.8
Postgresql Postgresql 9.0.7
Postgresql Postgresql 9.0.9
Postgresql Postgresql 9.0.11
Postgresql Postgresql 9.0.12
Postgresql Postgresql 9.0
6.8
CVSSv2
CVE-2013-0255
PostgreSQL 9.2.x prior to 9.2.3, 9.1.x prior to 9.1.8, 9.0.x prior to 9.0.12, 8.4.x prior to 8.4.16, and 8.3.x prior to 8.3.23 does not properly declare the enum_recv function in backend/utils/adt/enum.c, which causes it to be invoked with incorrect arguments and allows remote au...
Postgresql Postgresql 8.3.16
Postgresql Postgresql 8.3.17
Postgresql Postgresql 8.3.20
Postgresql Postgresql 8.3.8
Postgresql Postgresql 8.3.21
Postgresql Postgresql 8.3.22
Postgresql Postgresql 8.3.2
Postgresql Postgresql 8.3.1
Postgresql Postgresql 8.3.19
Postgresql Postgresql 8.3.18
Postgresql Postgresql 8.3.6
Postgresql Postgresql 8.3.5
Postgresql Postgresql 8.3.12
Postgresql Postgresql 8.3.9
Postgresql Postgresql 8.3.11
Postgresql Postgresql 8.3.14
Postgresql Postgresql 8.3.7
Postgresql Postgresql 8.3.15
Postgresql Postgresql 8.3.4
Postgresql Postgresql 8.3.3
Postgresql Postgresql 8.3.10
Postgresql Postgresql 8.3.13
4.9
CVSSv2
CVE-2012-3488
The libxslt support in contrib/xml2 in PostgreSQL 8.3 prior to 8.3.20, 8.4 prior to 8.4.13, 9.0 prior to 9.0.9, and 9.1 prior to 9.1.5 does not properly restrict access to files and URLs, which allows remote authenticated users to modify data, obtain sensitive information, or tri...
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.1
Postgresql Postgresql 8.4.12
Postgresql Postgresql 8.4.6
Postgresql Postgresql 8.4.10
Postgresql Postgresql 8.4.3
Postgresql Postgresql 8.4.4
Postgresql Postgresql 8.4.7
Postgresql Postgresql 8.4.5
Postgresql Postgresql 8.4.1
Postgresql Postgresql 8.4.11
Postgresql Postgresql 8.4
Postgresql Postgresql 8.4.2
Postgresql Postgresql 8.4.8
Postgresql Postgresql 8.4.9
Postgresql Postgresql 8.3.18
Postgresql Postgresql 8.3.13
Postgresql Postgresql 8.3.2
Postgresql Postgresql 8.3.1
4
CVSSv2
CVE-2012-3489
The xml_parse function in the libxml2 support in the core server component in PostgreSQL 8.3 prior to 8.3.20, 8.4 prior to 8.4.13, 9.0 prior to 9.0.9, and 9.1 prior to 9.1.5 allows remote authenticated users to determine the existence of arbitrary files or URLs, and possibly obta...
Postgresql Postgresql
Opensuse Opensuse 11.4
Opensuse Opensuse 12.2
Opensuse Opensuse 12.1
Apple Mac Os X Server 10.6.8
Apple Mac Os X Server
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 12.04
Debian Debian Linux 6.0
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Eus 6.3
4
CVSSv2
CVE-2012-2655
PostgreSQL 8.3.x prior to 8.3.19, 8.4.x prior to 8.4.12, 9.0.x prior to 9.0.8, and 9.1.x prior to 9.1.4 allows remote authenticated users to cause a denial of service (server crash) by adding the (1) SECURITY DEFINER or (2) SET attributes to a procedural language's call hand...
Postgresql Postgresql 8.3.13
Postgresql Postgresql 8.3.6
Postgresql Postgresql 8.3.4
Postgresql Postgresql 8.3.11
Postgresql Postgresql 8.3.8
Postgresql Postgresql 8.3.2
Postgresql Postgresql 8.3.1
Postgresql Postgresql 8.3.14
Postgresql Postgresql 8.3.17
Postgresql Postgresql 8.3.7
Postgresql Postgresql 8.3.5
Postgresql Postgresql 8.3.16
Postgresql Postgresql 8.3.15
Postgresql Postgresql 8.3.10
Postgresql Postgresql 8.3.9
Postgresql Postgresql 8.3
Postgresql Postgresql 8.3.12
Postgresql Postgresql 8.3.3
Postgresql Postgresql 8.3.18
Postgresql Postgresql 8.4.3
Postgresql Postgresql 8.4.4
Postgresql Postgresql 8.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36954
CVE-2024-36933
CVE-2024-24919
CVE-2024-36923
CVE-2024-2961
CVE-2024-36925
bypass
encryption
command injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »