5 matches found
PostgreSQL JDBC Driver SQL Injection Vulnerability - Windows
PostgreSQL with JDBC Driver is prone to a SQL injection vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
PostgreSQL JDBC Driver SQL Injection Vulnerability (Windows)
This host is installed with PostgreSQL with JDBC Driver and is prone to sql injection vulnerability. OpenVAS Vulnerability Test $Id: gbpostgresqljdbcdriversqlinjvulnwin.nasl 5365 2017-02-20 13:46:09Z cfi $ PostgreSQL JDBC Driver SQL Injection Vulnerability Windows Authors: Rachana Shetty Copyrigh...
PostgreSQL JDBC驱动程序交互错误SQL注入攻击漏洞
CVE ID: CVE-2012-1618 PostgreSQL JDBC驱动程序可允许Java程序连接到PostgreSQL数据库。 PostgreSQL JDBC 8.2之前版本结合使用启用了"standardconformingstrings"选项的PostgreSQL服务器时存在交互错误,无法正确转义某些JDBC语句参数,可允许远程攻击者执行SQL注入攻击。 0 PostgreSQL JDBC Driver 8.2 厂商补丁: PostgreSQL ---------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
CVE-2012-1618
CVE-2012-1618 affects the PostgreSQL JDBC Driver prior to 8.2 when used with servers enabling standard_conforming_strings, allowing remote SQL injection via unescaped JDBC parameters. The issue is documented across multiple sources; exploitation details are not provided in the connected documents...
CVE-2012-1618
Interaction error in the PostgreSQL JDBC driver before 8.2, when used with a PostgreSQL server with the "standardconformingstrings" option enabled, such as the default configuration of PostgreSQL 9.1, does not properly escape unspecified JDBC statement parameters, which allows remote attackers to...