Description
PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers to retrieve passwords from the user mappings defined by the foreign server owners without actually having the privileges to do so.
Remediation
References
Related Vulnerabilities
PHP Other Vulnerability (CVE-2001-0108)
MySQL CVE-2015-4767 Vulnerability (CVE-2015-4767)
Oracle JRE CVE-2014-0448 Vulnerability (CVE-2014-0448)
WordPress Plugin wp audio gallery playlist 'playlist.php' SQL Injection (0.12)
Nginx Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2263)