SEKurity GmbH Logo
Home / Tags / PostgreSQL

#PostgreSQL

2 Articles tagged

[*] Filtering articles by tag: PostgreSQL
[+] Matching entries: 2
root@sekurity:~# ls -la /tags/postgresql/* _

CVE Research
sekurity-team

InSEKurity of the Week (CW25/2026): Splunk Enterprise Unauthenticated RCE via PostgreSQL Sidecar (CVE-2026-20253)

A missing-authentication flaw in Splunk Enterprise's PostgreSQL sidecar service lets unauthenticated attackers create and overwrite arbitrary files -- chained into remote code execution, actively exploited in the wild, and the first Splunk bug ever added to CISA KEV

01
CVE Research
sekurity-team

InSEKurity of the Week (CW21/2026): Drupal Core Anonymous SQL Injection (CVE-2026-9082)

An unauthenticated SQL injection in Drupal core's PostgreSQL EntityQuery handler -- anonymous attackers turn JSON object keys and JSON:API filter parameters into raw SQL fragments. Drupal-rated 23/25 'Highly Critical', CISA KEV, 15,000+ exploit attempts in 48 hours

02

root@sekurity:~# echo "End of results for tag: PostgreSQL"
End of results for tag: PostgreSQL
root@sekurity:~# _