Lucene search
K

16 matches found

OSV
OSV
added 4 days ago4 views

PYSEC-2026-450 pgadmin4 has a Meta-Command Filter Command Execution

The PLAIN restore meta-command filter introduced in pgAdmin as part of the fix for CVE-2025-12762 does not detect meta-commands when a SQL file begins with a UTF-8 Byte Order Mark EF BB BF or other special byte sequences. The implemented filter uses the function hasmetacommands, which scans raw...

9.1CVSS6AI score0.00851EPSS
Exploits1References8
Github Security Blog
Github Security Blog
added 2025/12/11 9:31 p.m.11 views

pgadmin4 has a Meta-Command Filter Command Execution

The PLAIN restore meta-command filter introduced in pgAdmin as part of the fix for CVE-2025-12762 does not detect meta-commands when a SQL file begins with a UTF-8 Byte Order Mark EF BB BF or other special byte sequences. The implemented filter uses the function hasmetacommands, which scans raw...

9.1CVSS7.9AI score0.00851EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2025/12/11 9:31 p.m.4 views

GHSA-FXMW-JCGR-W44V pgadmin4 has a Meta-Command Filter Command Execution

The PLAIN restore meta-command filter introduced in pgAdmin as part of the fix for CVE-2025-12762 does not detect meta-commands when a SQL file begins with a UTF-8 Byte Order Mark EF BB BF or other special byte sequences. The implemented filter uses the function hasmetacommands, which scans raw...

9.1CVSS7.8AI score0.00851EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-15330

Malware in sbrugna...

7.5CVSS6.8AI score0.00979EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/10/01 8:41 p.m.2 views

CVE-2025-59337 Discourse: Cross-Site Data Exposure via Backup Restore Metacommand Injection in Multisite Deployments

Discourse is an open-source community discussion platform. In versions 3.5.0 and below, malicious meta-commands could be embedded in a backup dump and executed during restore. In multisite setups, this allowed an admin of one site to access data or credentials from other sites. This issue is fixe...

5.5CVSS6.2AI score0.00277EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2023/08/28 3:48 p.m.16 views

CVE-2020-22570

A vulnerability was found in Memcached. This security issue appears as a NULL pointer dereference vulnerability in memcached.c that allows remote attackers to cause a denial of service daemon crash via a crafted meta-command. Mitigation Mitigation for this issue is either not available or the...

6.5CVSS7.2AI score0.00979EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2023/08/23 12:0 a.m.13 views

Memcached 1.6.x < 1.6.3 DoS Vulnerability

Memcached is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:memcached:memcached"...

7.5CVSS6.9AI score0.00979EPSS
Exploits1References1
NVD
NVD
added 2023/08/22 7:16 p.m.8 views

CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

7.5CVSS7.3AI score0.00979EPSS
Exploits1References1
OSV
OSV
added 2023/08/22 7:16 p.m.2 views

DEBIAN-CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

7.5CVSS6.7AI score0.00979EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2023/08/22 7:16 p.m.16 views

CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

7.5CVSS6.9AI score0.00979EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/08/22 12:0 a.m.7 views

CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

6.7AI score0.00979EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2023/08/22 12:0 a.m.20 views

CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

7.5CVSS6.7AI score0.00979EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2023/08/22 12:0 a.m.4 views

PT-2023-11622 · Memcached · Memcached

Name of the Vulnerable Software and Affected Versions: Memcached versions 1.6.0 through 1.6.2 Description: The issue allows remote attackers to cause a denial of service, resulting in a daemon crash, via a crafted meta command. Recommendations: For Memcached versions 1.6.0 through 1.6.2, update t...

7.5CVSS7.1AI score0.00979EPSS
Exploits1References9
Cvelist
Cvelist
added 2023/08/22 12:0 a.m.17 views

CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

7.3AI score0.00979EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2020/12/01 12:0 a.m.5 views

The vulnerability of the “gset” meta-command implementation in the PostgreSQL database management system allows a hacker to execute arbitrary code.

The vulnerability of the “gset” meta-command in the PostgreSQL database management system is related to errors in privilege context switching. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

8.1CVSS7.7AI score0.02586EPSS
Exploits0References8Affected Software6
OSV
OSV
added 2018/10/02 7:29 p.m.3 views

CVE-2018-9507

In btaavprocmetacmd of btaavact.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions:...

6.5CVSS5.9AI score0.00571EPSS
Exploits0References4
Rows per page
Query Builder