Description
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
Debian DSA |
DSA-1688-1 | New courier-authlib packages fix SQL injection |
Debian DSA |
DSA-1688-2 | New courier-authlib packages fix regression |
EUVD |
EUVD-2008-2375 | SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes. |
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-07T08:58:02.475Z
Reserved: 2008-05-21T00:00:00.000Z
Link: CVE-2008-2380
No data.
Status : Modified
Published: 2008-12-22T15:30:00.577
Modified: 2026-06-16T22:53:40.523
Link: CVE-2008-2380
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Debian DSA
EUVD