Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Amazon
Amazonadded 2025/03/06 12:0 a.m.7 views

Important: libpq

Issue Overview: Improper neutralization of quoting syntax in PostgreSQL libpq functions PQescapeLiteral, PQescapeIdentifier, PQescapeString, and PQescapeStringConn allows a database input provider to achieve SQL injection in certain usage patterns. Specifically, SQL injection requires the...

8.1CVSS8.1AI score0.89472EPSS
Exploits10
BDU FSTEC
BDU FSTECadded 2025/02/17 12:0 a.m.5 views

The vulnerabilities of the functions PQescapeLiteral(), PQescapeIdentifier(), PQescapeString(), and PQescapeStringConn() in the libpq library of the PostgreSQL database management system allow a hacker to execute arbitrary code.

The vulnerabilities of the functions PQescapeLiteral, PQescapeIdentifier, PQescapeString, and PQescapeStringConn in the libpq library of the PostgreSQL database management system are related to the lack of security measures for SQL query structures. Exploiting these vulnerabilities can allow a...

10CVSS8.4AI score0.89472EPSS
Exploits14References16Affected Software10
VulnCheck KEV
VulnCheck KEVadded 2025/02/13 12:0 a.m.2 views

VulnCheck KEV: CVE-2025-1094

Improper neutralization of quoting syntax in PostgreSQL libpq functions PQescapeLiteral, PQescapeIdentifier, PQescapeString, and PQescapeStringConn allows a database input provider to achieve SQL injection in certain usage patterns. Specifically, SQL injection requires the application...

8.1CVSS7.4AI score0.89472EPSS
Exploits10References1
Rows per page
Query Builder