CVSS: 9.8EPSS: 1%CPEs: 40EXPL: 0CVE-2006-2313
https://notcve.org/view.php?id=CVE-2006-2313
24 May 2006 — PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in applications via invalid encodings of multibyte characters, aka one variant of "Encoding-Based SQL Injection." • ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc •
CVSS: 9.8EPSS: 2%CPEs: 40EXPL: 0CVE-2006-2314
https://notcve.org/view.php?id=CVE-2006-2314
24 May 2006 — PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in applications that use multibyte encodings that allow the "\" (backslash) byte 0x5c to be the trailing byte of a multibyte character, such as SJIS, BIG5, GBK, GB18030, and UHC, which cannot be handled correctly by a client that does not understand multibyte encodings, aka a second variant of "Encoding-Based SQL Injec... • ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2006-0553
https://notcve.org/view.php?id=CVE-2006-0553
14 Feb 2006 — PostgreSQL 8.1.0 through 8.1.2 allows authenticated database users to gain additional privileges via "knowledge of the backend protocol" using a crafted SET ROLE to other database users, a different vulnerability than CVE-2006-0678. • http://archives.postgresql.org/pgsql-announce/2006-02/msg00008.php • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.5EPSS: 0%CPEs: 36EXPL: 0CVE-2006-0678
https://notcve.org/view.php?id=CVE-2006-0678
14 Feb 2006 — PostgreSQL 7.3.x before 7.3.14, 7.4.x before 7.4.12, 8.0.x before 8.0.7, and 8.1.x before 8.1.3, when compiled with Asserts enabled, allows local users to cause a denial of service (server crash) via a crafted SET SESSION AUTHORIZATION command, a different vulnerability than CVE-2006-0553. • http://secunia.com/advisories/18890 •
CVSS: 7.5EPSS: 1%CPEs: 8EXPL: 0CVE-2006-0105
https://notcve.org/view.php?id=CVE-2006-0105
10 Jan 2006 — PostgreSQL 8.0.x before 8.0.6 and 8.1.x before 8.1.2, when running on Windows, allows remote attackers to cause a denial of service (postmaster exit and no new connections) via a large number of simultaneous connection requests. • http://archives.postgresql.org/pgsql-announce/2006-01/msg00001.php •