2 matches found
Missing Authorization
Overview Affected versions of this package are vulnerable to Missing Authorization via the CREATE STATISTICS command. A table owner can exploit this vulnerability by creating a statistics object in an arbitrary schema, blocking other users with valid CREATE privileges from creating a statistics...
CLSA-2025-1761323193 libpq: Fix of CVE-2025-1094
CVE-2025-1094: fix potential SQL injections allowed by an improper encoding validation in data quoting functions...