Index Functions Privilege Escalation : as a unique feature, PostgreSQL allows users to create indexes on the results of user-defined functions, known as expression indexes. This provided two vulnerabilities to privilege escalation: index functions were executed as the superuser and not the table owner during VACUUM and ANALYZE, and that SET ROLE and SET SESSION AUTHORIZATION were permitted withi ...