Vulnerabilities > Postgresql > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-06-19 | CVE-2007-3279 | Remote Security vulnerability in Postgresql 8.1 PostgreSQL 8.1 and probably later versions, when the PL/pgSQL (plpgsql) language has been created, grants certain plpgsql privileges to the PUBLIC domain, which allows remote attackers to create and execute functions, as demonstrated by functions that perform local brute-force password guessing attacks, which may evade intrusion detection. | 10.0 |
2003-01-17 | CVE-2002-1399 | Remote Security vulnerability in PostgreSQL Unknown vulnerability in cash_out and possibly other functions in PostgreSQL 7.2.1 and earlier, and possibly later versions before 7.2.3, with unknown impact, based on an invalid integer input which is processed as a different data type, as demonstrated using cash_out(2). | 10.0 |