Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2013/01/24 12:0 a.m.54 views

PostgreSQL JDBC Driver SQL Injection Vulnerability - Windows

PostgreSQL with JDBC Driver is prone to a SQL injection vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.6AI score0.02942EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2013/01/24 12:0 a.m.25 views

PostgreSQL JDBC Driver SQL Injection Vulnerability (Windows)

This host is installed with PostgreSQL with JDBC Driver and is prone to sql injection vulnerability. OpenVAS Vulnerability Test $Id: gbpostgresqljdbcdriversqlinjvulnwin.nasl 5365 2017-02-20 13:46:09Z cfi $ PostgreSQL JDBC Driver SQL Injection Vulnerability Windows Authors: Rachana Shetty Copyrigh...

7.5CVSS0.02942EPSS
Exploits1References4
seebug.org
seebug.org
added 2012/10/10 12:0 a.m.41 views

PostgreSQL JDBC驱动程序交互错误SQL注入攻击漏洞

CVE ID: CVE-2012-1618 PostgreSQL JDBC驱动程序可允许Java程序连接到PostgreSQL数据库。 PostgreSQL JDBC 8.2之前版本结合使用启用了"standardconformingstrings"选项的PostgreSQL服务器时存在交互错误,无法正确转义某些JDBC语句参数,可允许远程攻击者执行SQL注入攻击。 0 PostgreSQL JDBC Driver 8.2 厂商补丁: PostgreSQL ---------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...

7.5CVSS6.4AI score0.02942EPSS
Exploits1
CVE
CVE
added 2012/10/06 10:0 p.m.109 views

CVE-2012-1618

CVE-2012-1618 affects the PostgreSQL JDBC Driver prior to 8.2 when used with servers enabling standard_conforming_strings, allowing remote SQL injection via unescaped JDBC parameters. The issue is documented across multiple sources; exploitation details are not provided in the connected documents...

7.5CVSS7.5AI score0.02942EPSS
Exploits1References12Affected Software2
Debian CVE
Debian CVE
added 2012/10/06 10:0 p.m.22 views

CVE-2012-1618

Interaction error in the PostgreSQL JDBC driver before 8.2, when used with a PostgreSQL server with the "standardconformingstrings" option enabled, such as the default configuration of PostgreSQL 9.1, does not properly escape unspecified JDBC statement parameters, which allows remote attackers to...

7.5CVSS7.4AI score0.02942EPSS
Exploits1
Rows per page
Query Builder