2 matches found
CVE-2026-7816
A flaw was found in pgadmin4. User-supplied input was interpolated directly into a psql \copy metacommand template without sanitization. An authenticated user could inject " TO PROGRAM 'cmd'" to break out of the \copy ... context and achieve arbitrary command execution on the pgAdmin server, or "...
CVE-2026-7816
creationtimestamp| type| source ---|---|--- 2026-05-11 16:35:29+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mllpeiqf6e2t 2026-05-26 19:07:08+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mmrotseyvx2u...