Description
PostgreSQL before 9.5.x before 9.5.2 does not properly maintain row-security status in cached plans, which might allow attackers to bypass intended access restrictions by leveraging a session that performs queries as more than one role.
Remediation
References
Related Vulnerabilities
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4297)
Oracle JRE CVE-2012-1719 Vulnerability (CVE-2012-1719)
WordPress Plugin Wufoo Shortcode Cross-Site Scripting (1.50)
WordPress Plugin MP3-jPlayer Multiple Cross-Site Scripting Vulnerabilities (1.8.11)
MongoDb Improper Input Validation Vulnerability (CVE-2012-6619)