Description
schema_element defeats protective search_path changes; It was found that certain database calls in PostgreSQL could permit an authed attacker with elevated database-level privileges to execute arbitrary code.
Remediation
References
Related Vulnerabilities
Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2020-1971)
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4191)
Joomla Other Vulnerability (CVE-2006-6833)
Apache Tomcat CVE-2019-2684 Vulnerability (CVE-2019-2684)
WordPress Plugin Slideshow Gallery LITE Multiple Vulnerabilities (1.6.8)