postgresql: SQL Injection in ResultSet.refreshRow() with malicious column names

A flaw was found in PostgresQL. This flaw allows an attacker to benefit from a miss escaping character and leads to a SQL injection attack due to Java.sql.ResultRow.refreshRow implementation from PGSQL...

CLSA-2022-1670874574 vim: Fix of 2 CVEs

CVE-2022-4141: check for text locked in CTRL-W gf - CVE-2022-3520: check that the column does not become negative...

vim: Fix of 2 CVEs

CVE-2022-4141: check for text locked in CTRL-W gf - CVE-2022-3520: check that the column does not become negative...

CLSA-2022-1670874310 Fix CVE(s): CVE-2022-4141, CVE-2022-3520

SECURITY UPDATE: With a Visual block a put command column may go negative - debian/patches/CVE-2022-3520.patch: Check that the column does not become negative - CVE-2022-3520 SECURITY UPDATE: Invalid memory access in substitute with function that goes to another file -...

CLSA-2022-1670874212 vim: Fix of 2 CVEs

CVE-2022-4141: check for text locked in CTRL-W gf - CVE-2022-3520: check that the column does not become negative...

CVE-2022-25629

An authenticated user who has the privilege to add/edit annotations on the Content tab, can craft a malicious annotation that can be executed on the annotations page Annotation Text Column...

The vulnerability of the components column.title and cellLinkTooltip in the Grafana data visualization web tool allows a hacker to exploit their privileges.

The vulnerability of the column.title and cellLinkTooltip components of the Grafana data visualization web tool is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to gain increased privileges remotely...

postgresql: SQL Injection in ResultSet.refreshRow() with malicious column names

A flaw was found in PostgresQL. This flaw allows an attacker to benefit from a miss escaping character and leads to a SQL injection attack due to Java.sql.ResultRow.refreshRow implementation from PGSQL...

SQL Injection

moodle/moodle is vulnerable to sql injection attacks. The vulnerability exists in getuserslisting function of datalib.php due to improper implementation of sort helper and column mapping for sort which allows an attacker to inject malicious queries into the system...

Shopxian CMS 跨站请求伪造漏洞

Shopxian CMS is an open source free website builder system for individual developers in China zhangqiquan. A cross-site request forgery vulnerability exists in Shopxian CMS version 3.0.0. An attacker exploits this vulnerability to delete a specified column via...

CVE-2022-38329

A CSRF vulnerability in Shopxian CMS 3.0.0 could allow an unauthenticated, remote attacker to craft a malicious link, potentially causing the administrator to perform unintended actions on an affected system. The vulnerability could allow attackers to modify or delete specific content through...

CVE-2022-36225

EyouCMS V1.5.8-UTF8-SP1 is vulnerable to Cross Site Request Forgery CSRF via the background, column management function and add...

CVE-2022-36225

EyouCMS V1.5.8-UTF8-SP1 is vulnerable to Cross Site Request Forgery CSRF via the background, column management function and add...

CVE-2022-36225

EyouCMS V1.5.8-UTF8-SP1 is vulnerable to Cross Site Request Forgery CSRF via the background, column management function and add...

PT-2022-23267 · Eyoucms · Eyoucms

Name of the Vulnerable Software and Affected Versions: EyouCMS version 1.5.8-UTF8-SP1 Description: The issue concerns a Cross Site Request Forgery CSRF vulnerability. It affects the background, column management function, and add functionality. Recommendations: For EyouCMS version 1.5.8-UTF8-SP1,...

EyouCms 跨站请求伪造漏洞

Zanzan Web Technology EyouCms Eyou CMS is a ThinkPHP-based open source content management system CMS from Zanzan Web Technology in China. version V1.5.8 of EyouCMS has a security vulnerability that stems from the existence of cross-site request forgery CSRF vulnerabilities through the backend,...

GHSA-XPP3-XRFF-W6RH rocksdb vulnerable to out-of-bounds read

Affected versions of this crate called the RocksDB C API rocksdbopencolumnfamilieswithttl with a pointer to a single integer TTL value, but one TTL value for each column family is expected. This is only relevant when using rocksdb::DBWithThreadMode::opencfdescriptorswithttl with multiple column...

GHSA-R38F-C4H4-HQQ2 PostgreSQL JDBC Driver SQL Injection in ResultSet.refreshRow() with malicious column names

Impact What kind of vulnerability is it? Who is impacted? The PGJDBC implementation of the java.sql.ResultRow.refreshRow method is not performing escaping of column names so a malicious column name that contains a statement terminator, e.g. ;, could lead to SQL injection. This could lead to...

PostgreSQL JDBC Driver SQL Injection in ResultSet.refreshRow() with malicious column names

Impact What kind of vulnerability is it? Who is impacted? The PGJDBC implementation of the java.sql.ResultRow.refreshRow method is not performing escaping of column names so a malicious column name that contains a statement terminator, e.g. ;, could lead to SQL injection. This could lead to...

DEBIAN-CVE-2022-31197

PostgreSQL JDBC Driver PgJDBC for short allows Java programs to connect to a PostgreSQL database using standard, database independent Java code. The PGJDBC implementation of the java.sql.ResultRow.refreshRow method is not performing escaping of column names so a malicious column name that contain...