GHSA-FXMW-JCGR-W44V pgadmin4 has a Meta-Command Filter Command Execution

The PLAIN restore meta-command filter introduced in pgAdmin as part of the fix for CVE-2025-12762 does not detect meta-commands when a SQL file begins with a UTF-8 Byte Order Mark EF BB BF or other special byte sequences. The implemented filter uses the function hasmetacommands, which scans raw...

pgadmin4 has a Meta-Command Filter Command Execution

The PLAIN restore meta-command filter introduced in pgAdmin as part of the fix for CVE-2025-12762 does not detect meta-commands when a SQL file begins with a UTF-8 Byte Order Mark EF BB BF or other special byte sequences. The implemented filter uses the function hasmetacommands, which scans raw...

EUVD-2020-15330

Malware in sbrugna...

CVE-2025-59337 Discourse: Cross-Site Data Exposure via Backup Restore Metacommand Injection in Multisite Deployments

Discourse is an open-source community discussion platform. In versions 3.5.0 and below, malicious meta-commands could be embedded in a backup dump and executed during restore. In multisite setups, this allowed an admin of one site to access data or credentials from other sites. This issue is fixe...

CVE-2020-22570

A vulnerability was found in Memcached. This security issue appears as a NULL pointer dereference vulnerability in memcached.c that allows remote attackers to cause a denial of service daemon crash via a crafted meta-command. Mitigation Mitigation for this issue is either not available or the...

Memcached 1.6.x < 1.6.3 DoS Vulnerability

Memcached is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:memcached:memcached"...

DEBIAN-CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

PT-2023-11622 · Memcached · Memcached

Name of the Vulnerable Software and Affected Versions: Memcached versions 1.6.0 through 1.6.2 Description: The issue allows remote attackers to cause a denial of service, resulting in a daemon crash, via a crafted meta command. Recommendations: For Memcached versions 1.6.0 through 1.6.2, update t...

CVE-2020-22570

Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service daemon crash via a crafted meta command...

CVE-2018-9507

In btaavprocmetacmd of btaavact.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions:...