Description
PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers to retrieve passwords from the user mappings defined by the foreign server owners without actually having the privileges to do so.
Remediation
References
Related Vulnerabilities
WordPress Plugin Toggle The Title Cross-Site Scripting (1.4)
WordPress Plugin Easy Social Icons Cross-Site Scripting (3.1.2)
WordPress Plugin BP Group Documents Security Bypass (1.10)
WordPress Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-9066)
WordPress Plugin Elementor Website Builder Unspecified Vulnerability (1.8.8)