| 2021-03-19 | CVE-2019-10127 | Unspecified vulnerability in Postgresql
A vulnerability was found in postgresql versions 11.x prior to 11.3. | 8.8 |
| 2021-02-23 | CVE-2021-20229 | A flaw was found in PostgreSQL in versions before 13.2. | 4.3 |
| 2020-11-23 | CVE-2020-25696 | A flaw was found in the psql interactive terminal of PostgreSQL in versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. | 7.5 |
| 2020-11-16 | CVE-2020-25695 | A flaw was found in PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. | 8.8 |
| 2020-11-16 | CVE-2020-25694 | A flaw was found in PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. | 8.1 |
| 2020-09-16 | CVE-2020-10733 | Untrusted Search Path vulnerability in Postgresql
The Windows installer for PostgreSQL 9.5 - 12 invokes system-provided executables that do not have fully-qualified paths. | 7.3 |
| 2020-08-24 | CVE-2020-14350 | Untrusted Search Path vulnerability in multiple products
It was found that some PostgreSQL extensions did not use search_path safely in their installation script. | 7.3 |
| 2020-08-24 | CVE-2020-14349 | Uncontrolled Search Path Element vulnerability in multiple products
It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly sanitize the search_path during logical replication. | 7.1 |
| 2020-06-04 | CVE-2020-13692 | XXE vulnerability in multiple products
PostgreSQL JDBC Driver (aka PgJDBC) before 42.2.13 allows XXE. | 7.7 |
| 2020-03-17 | CVE-2020-1720 | Missing Authorization vulnerability in multiple products
A flaw was found in PostgreSQL's "ALTER ... | 6.5 |