Description
PostgreSQL 8.3.x before 8.3.19, 8.4.x before 8.4.12, 9.0.x before 9.0.8, and 9.1.x before 9.1.4 allows remote authenticated users to cause a denial of service (server crash) by adding the (1) SECURITY DEFINER or (2) SET attributes to a procedural language's call handler.
Remediation
References
Related Vulnerabilities
WordPress Plugin Post Grid, List for WordPress-Content Views Cross-Site Scripting (1.9.0)
WordPress Plugin Custom Post Type Relations Cross-Site Scripting (1.0)
WordPress Plugin Image Photo Gallery Final Tiles Grid Cross-Site Scripting (3.4.18)
Python URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-1000110)