Vulnerabilities > Postgresql > Postgresql > 9.6.24
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-04-01 | CVE-2019-9193 | OS Command Injection vulnerability in Postgresql In PostgreSQL 9.3 through 11.2, the "COPY TO/FROM PROGRAM" function allows superusers and users in the 'pg_execute_server_program' group to execute arbitrary code in the context of the database's operating system user. | 7.2 |