Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Guiseppe Tanzilli And Matthias Eckermann Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2005-3656 1 Guiseppe Tanzilli And Matthias Eckermann 1 Mod Auth Pgsql 2018-10-03 10.0 HIGH N/A
Multiple format string vulnerabilities in logging functions in mod_auth_pgsql before 2.0.3, when used for user authentication against a PostgreSQL database, allows remote unauthenticated attackers to execute arbitrary code, as demonstrated via the username.
CVE-2001-1379 1 Guiseppe Tanzilli And Matthias Eckermann 1 Mod Auth Pgsql 2017-07-10 7.5 HIGH N/A
The PostgreSQL authentication modules (1) mod_auth_pgsql 0.9.5, and (2) mod_auth_pgsql_sys 0.9.4, allow remote attackers to bypass authentication and execute arbitrary SQL via a SQL injection attack on the user name.