Back to search
CVE-2003-0500
Published: Jul 4, 2003
Modified: Aug 8, 2024
PUBLISHED
Description
SQL injection vulnerability in the PostgreSQL authentication module (mod_sql_postgres) for ProFTPD before 1.2.9rc1 allows remote attackers to execute arbitrary SQL and gain privileges by bypassing authentication or stealing passwords via the USER name.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20030618 SQL Inject in ProFTPD login against Postgresql using mod_sql
mailing-list
x_refsource_FULLDISC
DSA-338
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now