ccchme

1 exploit Active since Mar 2018
CVE-2018-1058 NOMISEC HIGH WORKING POC
PostgreSQL 9.3-10 - Authenticated Remote Code Execution via Query Behavior Modification
A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected.
CVSS 8.8