Description
CRLF injection vulnerability in pg_dump in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows user-assisted remote attackers to execute arbitrary SQL commands via a crafted file containing object names with newlines, which are inserted into an SQL script that is used when the database is restored.
Remediation
References
Related Vulnerabilities
WordPress Plugin BuddyPress Security Bypass (2.3.4)
WordPress Plugin WordPress Books Gallery Unspecified Vulnerability (4.4.1)
WordPress Plugin Side Menu-add fixed side buttons SQL Injection (3.1.3)
phpBB CVE-2008-3224 Vulnerability (CVE-2008-3224)
MySQL NULL Pointer Dereference Vulnerability (CVE-2020-1967)