| CVE-2024-1597 |
high |
— |
8.0 |
2y ago |
Duplicate Advisory: SQL injection in pgjdbc |
+1 |
| CVE-2020-13692 |
high |
— |
8.0 |
4y ago |
Improper Restriction of XML External Entity Reference |
|
| CVE-2026-42198 |
high |
7.5 |
7.5 |
29d ago |
pgjdbc: Unbounded PBKDF2 iterations in SCRAM authentication allows CPU exhaustion DoS |
|
| CVE-2012-1618 |
high |
— |
7.5 |
14y ago |
Unescaped parameters in the PostgreSQL JDBC driver |
|
| CVE-2022-41946 |
medium |
— |
5.5 |
3y ago |
TemporaryFolder on unix-like systems does not limit access to created files |
+1 |
| CVE-2022-31197 |
medium |
— |
5.5 |
3y ago |
PostgreSQL JDBC Driver SQL Injection in ResultSet.refreshRow() with malicious column names |
+1 |
| CVE-2025-49146 |
unknown |
— |
— |
1y ago |
pgjdbc Client Allows Fallback to Insecure Authentication Despite channelBinding=require Configuration |
|
| CVE-2022-26520 |
unknown |
— |
— |
4y ago |
Path traversal in org.postgresql:postgresql |
|
| CVE-2022-21724 |
unknown |
— |
— |
4y ago |
pgjdbc Does Not Check Class Instantiation when providing Plugin Classes |
|