Lucene search

K

Pg Security Vulnerabilities

cve
cve

CVE-2022-25852

All versions of package pg-native; all versions of package libpq are vulnerable to Denial of Service (DoS) when the addons attempt to cast the second argument to an array and fail. This happens for every non-array argument passed. Note: pg-native is a mere binding to npm's libpq library, which in.....

7.5CVSS

7.5AI Score

0.001EPSS

2022-06-17 08:15 PM
40
4
cve
cve

CVE-2019-15658

connect-pg-simple before 6.0.1 allows SQL injection if tableName or schemaName is untrusted...

7.3CVSS

7.5AI Score

0.001EPSS

2019-08-26 11:15 PM
112
cve
cve

CVE-2018-0657

Cross-site scripting vulnerability in EC-CUBE Payment Module and GMO-PG Payment Module (PG Multi-Payment Service) for EC-CUBE (EC-CUBE Payment Module (2.12) version 3.5.23 and earlier, EC-CUBE Payment Module (2.11) version 2.3.17 and earlier, GMO-PG Payment Module (PG Multi-Payment Service) (2.12)....

4.8CVSS

5.2AI Score

0.001EPSS

2018-09-07 02:29 PM
29
cve
cve

CVE-2018-0658

Input validation issue in EC-CUBE Payment Module (2.12) version 3.5.23 and earlier, EC-CUBE Payment Module (2.11) version 2.3.17 and earlier, GMO-PG Payment Module (PG Multi-Payment Service) (2.12) version 3.5.23 and earlier, GMO-PG Payment Module (PG Multi-Payment Service) (2.11) version 2.3.17...

7.2CVSS

7.2AI Score

0.001EPSS

2018-09-07 02:29 PM
26
cve
cve

CVE-2018-5298

In the Procter & Gamble "Oral-B App" (aka com.pg.oralb.oralbapp) application 5.0.0 for Android, AES encryption with static parameters is used to secure the locally stored shared preferences. An attacker can gain access to locally stored user data more easily by leveraging access to the preferences....

7.5CVSS

7.5AI Score

0.001EPSS

2018-01-08 08:29 AM
16