Filter
-Infinity
0
Trending
maven/org.postgresql:postgresqlpgjdbc SQL Injection via line comment generation
10
First published (updated )
PostgreSQLPostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-1094: PostgSQL: Quoting APIs miss neutralizing quoting syntax in text that fails encoding validation, enabling psql SQL injection
First published (updated )
PostgreSQLPostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID
4.2
First published (updated )
PostgreSQL CommonPostgreSQL libpq retains an error message from man-in-the-middle
3.7
First published (updated )
A PostgreSQL zero-day was also exploited in US Treasury hack (CVE-2025-1094)
First published (updated )
Social
redditCVE-2025-1094: PostgSQL: Quoting APIs miss neutralizing quoting syntax in text that fails encoding validation, enabling psql SQL injection
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The RegisterCritical PostgreSQL bug tied to zero-day attack on US Treasury
First published (updated )
News
The RegisterBleepingComputerPostgreSQL flaw exploited as zero-day in BeyondTrust breach
First published (updated )
News
BleepingComputerDalibo Anonymizer for PostgreSQLSQL Injection in PostgreSQL Anonymizer 1.2 allows table owner to gain superuser privileges via masking rule
8
First published (updated )
Dalibo Anonymizer for PostgreSQLImproper Input Validation in PostgreSQL Anonymizer 1.2 allows table owner to gain superuser privileges via masking rule
8.8
First published (updated )
redhat/postgresqlPostgreSQL pg_stats_ext and pg_stats_ext_exprs lack authorization checks
4.3
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PostgreSQL CommonPostgreSQL PL/Perl environment variable changes execute arbitrary code
8.8
First published (updated )
PostgreSQL CommonPostgreSQL row security below e.g. subqueries disregards user ID changes
5.4
First published (updated )
PostgreSQL CommonPostgreSQL uses the username for a salt when generating passwords, which makes it easier for remote …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/postgresqlPostgreSQL non-owner REFRESH MATERIALIZED VIEW CONCURRENTLY executes arbitrary SQL
8
First published (updated )
redhat/postgresqlPostgresql: extension script @substitutions@ within quoting allow sql injection
8.8
First published (updated )
PostgreSQL CommonIncorrect control of environment variables in PostgreSQL PL/Perl allows an unprivileged database use…
7
First published (updated )
PostgreSQL CommonIncorrect privilege assignment in PostgreSQL allows a less-privileged application user to view or ch…
First published (updated )
PostgreSQL CommonIncomplete tracking in PostgreSQL of tables with row security allows a reused query to view or chang…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Red Hat Enterprise LinuxPostgresql: merge fails to enforce update or select row security policies
4.3
First published (updated )
Red Hat Enterprise Linux ServerPostgresql: role pg_signal_backend can signal certain superuser processes.
4.4
EPSS
0.12%
First published (updated )
redhat/postgresqlPostgreSQL could allow a remote attacker to obtain sensitive information, caused by the use of clear…
8.1
First published (updated )
redhat/postgresqlPostgreSQL could allow a remote attacker to execute arbitrary code on the system, caused by a flaw i…
7.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.