Description
The core server component in PostgreSQL 8.3 before 8.3.8 and 8.2 before 8.2.14, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password.
Remediation
References
Related Vulnerabilities
WordPress Plugin Shortcoder-Create Shortcodes for Anything Security Bypass (6.3)
WordPress Plugin IP Ban Cross-Site Request Forgery (1.2.3)
Magento Incorrect Authorization Vulnerability (CVE-2020-24401)
WordPress Plugin Fancy Gallery Cross-Site Scripting (1.5.12)
Oracle JRE Observable Discrepancy Vulnerability (CVE-2024-21208)