Description
PostgreSQL 8.3.x before 8.3.19, 8.4.x before 8.4.12, 9.0.x before 9.0.8, and 9.1.x before 9.1.4 allows remote authenticated users to cause a denial of service (server crash) by adding the (1) SECURITY DEFINER or (2) SET attributes to a procedural language's call handler.
Remediation
References
Related Vulnerabilities
WordPress Plugin Age Gate Unspecified Vulnerability (2.18.5)
WordPress Plugin FAQ Multiple Cross-Site Scripting Vulnerabilities (1.0.14)
Cherokee Out-of-bounds Write Vulnerability (CVE-2019-20800)
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.2.2)
WordPress Ultimate Member Plugin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8520)