Description
schema_element defeats protective search_path changes; It was found that certain database calls in PostgreSQL could permit an authed attacker with elevated database-level privileges to execute arbitrary code.
Remediation
References
Related Vulnerabilities
ownCloud Improper Input Validation Vulnerability (CVE-2013-1939)
MySQL CVE-2024-20961 Vulnerability (CVE-2024-20961)
WordPress Plugin Easy Digital Downloads QR Code Cross-Site Scripting (1.1.0)
WordPress Plugin Spreadsheet (wpSS) 'ss_id' Parameter SQL Injection (0.61)
WordPress Plugin VideoWhisper Video Presentation 'c_status.php' SQL Injection (1.1)