SQL injection vulnerability in the PostgreSQL authentication module (mod_sql_postgres) for ProFTPD prior to 1.2.9rc1 allows remote malicious users to execute arbitrary SQL and gain privileges by bypassing authentication or stealing passwords via the USER name.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
proftpd project proftpd 1.2.9_rc1 |