Description
The build_tablename function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP through 5.6.7 does not validate token extraction for table names, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted name.
Remediation
References
Related Vulnerabilities
Skipper Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2026-23742)
WordPress Plugin Download Zip Attachments Arbitrary File Download (1.0.0)
WordPress Plugin Attachment Manager Arbitrary File Upload (2.1.1)
WordPress Plugin Beaver Builder-WordPress Page Builder Security Bypass (1.7)
WordPress Plugin Codestyling Localization 'name' Parameter Cross-Site Scripting (1.99.19)