Download
| Alert*
oval:org.secpod.oval:def:509142
PostgreSQL is an advanced object-relational database management system. The postgresql-jdbc package includes the .jar files needed for Java programs to access a PostgreSQL database. Security Fix: PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE For more details a ... oval:org.secpod.oval:def:2600525 PostgreSQL is an advanced object-relational database management system. The postgresql-jdbc package includes the .jar files needed for Java programs to access a PostgreSQL database. oval:org.secpod.oval:def:5800246 PostgreSQL is an advanced object-relational database management system. The postgresql-jdbc package includes the .jar files needed for Java programs to access a PostgreSQL database. Security Fix: * PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE For more details ... oval:org.secpod.oval:def:10000656 The host is installed with Atlassian Confluence Server before 7.19.22 or 7.20.0 before 8.5.9 and is prone to a sql injection vulnerability vulnerability. A flaw is present in the application which fails to properly handle an issue in org.postgresql:postgresql dependency. Successful exploitation allo ... oval:org.secpod.oval:def:509139 PostgreSQL is an advanced object-relational database management system. The postgresql-jdbc package includes the .jar files needed for Java programs to access a PostgreSQL database. Security Fix: PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE For more details a ... oval:org.secpod.oval:def:10000654 The host is installed with Atlassian Confluence Server before 7.19.22 or 7.20.0 before 8.5.9 and is prone to a remote code execution vulnerability. A flaw is present in the application which fails to properly handle an issue in unspecified vectors. Successful exploitation allows an authenticated att ... oval:org.secpod.oval:def:98268 pgjdbc, the PostgreSQL JDBC Driver, allows attacker to inject SQL if using PreferQueryMode=SIMPLE. Note this is not the default. In the default mode there is no vulnerability. A placeholder for a numeric value must be immediately preceded by a minus. There must be a second placeholder for a string v ... oval:org.secpod.oval:def:4501550 PostgreSQL is an advanced object-relational database management system. The postgresql-jdbc package includes the .jar files needed for Java programs to access a PostgreSQL database. Security Fix: * PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE For more details ... oval:org.secpod.oval:def:98269 A flaw was found in the PostgreSQL JDBC Driver. A SQL injection is possible when using the non-default connection property preferQueryMode=simple in combination with application code that has a vulnerable SQL that negates a parameter value. oval:org.secpod.oval:def:1507400 [42.2.28-1] - rebase to 42.2.28 - fix for CVE-2024-1597 oval:org.secpod.oval:def:2501356 PostgreSQL is an advanced object-relational database management system. The postgresql-jdbc package includes the .jar files needed for Java programs to access a PostgreSQL database. oval:org.secpod.oval:def:98272 pgjdbc, the PostgreSQL JDBC Driver, allows attacker to inject SQL if using PreferQueryMode=SIMPLE. Note this is not the default. In the default mode there is no vulnerability. A placeholder for a numeric value must be immediately preceded by a minus. There must be a second placeholder for a string v ... oval:org.secpod.oval:def:89051603 This update for postgresql-jdbc fixes the following issues: * CVE-2024-1597: Fixed SQL Injection via line comment generation . oval:org.secpod.oval:def:89051601 This update for postgresql-jdbc fixes the following issues: * CVE-2024-1597: Fixed SQL Injection via line comment generation . oval:org.secpod.oval:def:1507404 [42.2.14-3] - Fix CVE-2024-1597 oval:org.secpod.oval:def:89051605 This update for postgresql-jdbc fixes the following issues: * CVE-2024-1597: Fixed SQL Injection via line comment generation . |