CVE-2026-6638 | PostgreSQL up to 16.13/17.9/18.3 Subscription sql injection

Inserito da Angelo Barbosa | Mag 14, 2026 | CVE

A vulnerability has been found in PostgreSQL up to 16.13/17.9/18.3 and classified as critical. This affects an unknown function of the component Subscription Handler. This manipulation causes sql injection.

This vulnerability is tracked as CVE-2026-6638. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.

CVE-2026-6638 | PostgreSQL up to 16.13/17.9/18.3 Subscription sql injection

Post correlati

CVE-2026-0980 | logicminds rubyipmi up to 0.12.1 BMC Username privilege escalation

CVE-2024-43776 | Huachu Digital Technology Easytest Online Test Platform up to er.24E01 Mock Exam qlevel sql injection

CVE-2023-49835 | Post Duplicator Plugin up to 2.31 on WordPress mtphr_duplicate_post authorization

CVE-2023-39327 | OpenJPEG infinite loop