Description
The core server component in PostgreSQL 8.3 before 8.3.8 and 8.2 before 8.2.14, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password.
Remediation
References
Related Vulnerabilities
MongoDb Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6494)
WordPress Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.0.1)
b2evolution Improper Input Validation Vulnerability (CVE-2017-1000423)
WordPress Plugin Social Essentials-Social Stats and Sharing Buttons Cross-Site Scripting (1.3.1)