11 matches found
EUVD-2023-2150
Malicious code in bioql PyPI...
CVE-2018-25088
A vulnerability, which was classified as critical, was found in Blue Yonder postgraasserver up to 2.0.0b2. Affected is the function createpgconnection/createpostgresdb of the file postgraasserver/backends/postgrescluster/postgresclusterdriver.py of the component PostgreSQL Backend Handler. The...
postgraas-server vulnerable to SQL injection
A vulnerability, which was classified as critical, was found in Blue Yonder postgraasserver up to 2.0.0b2. Affected is the function createpgconnection/createpostgresdb of the file postgraasserver/backends/postgrescluster/postgresclusterdriver.py of the component PostgreSQL Backend Handler. The...
GHSA-VGHM-8CJP-HJW6 postgraas-server vulnerable to SQL injection
A vulnerability, which was classified as critical, was found in Blue Yonder postgraasserver up to 2.0.0b2. Affected is the function createpgconnection/createpostgresdb of the file postgraasserver/backends/postgrescluster/postgresclusterdriver.py of the component PostgreSQL Backend Handler. The...
CVE-2018-25088
A vulnerability, which was classified as critical, was found in Blue Yonder postgraasserver up to 2.0.0b2. Affected is the function createpgconnection/createpostgresdb of the file postgraasserver/backends/postgrescluster/postgresclusterdriver.py of the component PostgreSQL Backend Handler. The...
CVE-2018-25088
A vulnerability, which was classified as critical, was found in Blue Yonder postgraasserver up to 2.0.0b2. Affected is the function createpgconnection/createpostgresdb of the file postgraasserver/backends/postgrescluster/postgresclusterdriver.py of the component PostgreSQL Backend Handler. The...
Sql injection
A vulnerability, which was classified as critical, was found in Blue Yonder postgraasserver up to 2.0.0b2. Affected is the function createpgconnection/createpostgresdb of the file postgraasserver/backends/postgrescluster/postgresclusterdriver.py of the component PostgreSQL Backend Handler. The...
CVE-2018-25088 Blue Yonder postgraas_server PostgreSQL Backend postgres_cluster_driver.py create_postgres_db sql injection
A vulnerability, which was classified as critical, was found in Blue Yonder postgraasserver up to 2.0.0b2. Affected is the function createpgconnection/createpostgresdb of the file postgraasserver/backends/postgrescluster/postgresclusterdriver.py of the component PostgreSQL Backend Handler. The...
CVE-2018-25088
CVE-2018-25088 affects Blue Yonder postgraas_server up to version 2.0.0b2. The vulnerability lies in the PostgreSQL backend driver (postgraas_server/backends/postgres_cluster/postgres_cluster_driver.py) functions _create_pg_connection and create_postgres_db, allowing SQL injection via the config ...
PT-2023-10828 · Blue Yonder · Postgraas Server
Name of the Vulnerable Software and Affected Versions: Blue Yonder postgraas server versions up to 2.0.0b2 Description: A critical issue was found in the PostgreSQL Backend Handler component, specifically in the create pg connection/create postgres db function of the postgraas...
Postgraas SQL注入漏洞
Blue Yonder GmbH Postgraas is a super-simple PostgreSQL-as-a-service from Blue Yonder GmbH, China. A SQL injection vulnerability exists in Blue Yonder postgraasserver 2.0.0b2 and earlier versions, which originates from the function in the file...