WEB APPLICATION VULNERABILITIES Standard & Premium

PostgreSQL CVE-2018-1058 Vulnerability (CVE-2018-1058)

Description

A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected.

Remediation

References

Related Vulnerabilities

Oracle JRE CVE-2013-0437 Vulnerability (CVE-2013-0437)

Chamilo Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2022-27427)

WordPress Plugin String locator PHAR Deserialization (2.5.0)

WordPress Plugin Resume Submissions & Job Postings Cross-Site Scripting (2.5.3)

WordPress Plugin Ultimate Gift Cards For WooCommerce Cross-Site Request Forgery (2.1.1)

Severity

High

Classification

CVE-2018-1058 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities