Where
-Infinity
0

Trending

Last week
Last month
Last year

A week after Dutch FIOD seized 800+ servers, the hosting network's ASN (AS209847) is still scanning at its normal daily rate

First published (updated )
Social
reddit

PostgreSQL postgresqlPostgreSQL refint allows stack buffer overflow and SQL injection

Risk 83
Severity
8.8
First published (updated )
CVE-2026-6637

PostgreSQL postgresqlPostgreSQL REFRESH PUBLICATION allows SQL injection via table name

Risk 83
Severity
8.8
First published (updated )
CVE-2026-6638

PostgreSQL postgresqlPostgreSQL pg_restore_attribute_stats accepts values that cause query planning to read past end of stats array

Risk 23
Severity
4.3
First published (updated )
CVE-2026-6575

PostgreSQL postgresqlPostgreSQL SSL/GSS init causes denial of service, via uncontrolled recursion

Risk 46
Severity
7.5
First published (updated )
CVE-2026-6479
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

PostgreSQL postgresqlPostgreSQL discloses MD5-hashed passwords via covert timing channel

Risk 42
Severity
6.5
First published (updated )
CVE-2026-6478

PostgreSQL postgresqlPostgreSQL libpq lo_* functions let server superuser overwrite client stack memory

Risk 81
Severity
8.8
First published (updated )
CVE-2026-6477

PostgreSQL postgresqlPostgreSQL pg_createsubscriber allows SQL injection via subscription name

Risk 69
Severity
7.2
First published (updated )
CVE-2026-6476

PostgreSQL postgresqlPostgreSQL pg_basebackup and pg_rewind can overwrite unrelated files of origin superuser choice

Risk 81
Severity
8.8
First published (updated )
CVE-2026-6475

PostgreSQL postgresqlPostgreSQL timeofday() can disclose portions of server memory

Risk 24
Severity
4.3
First published (updated )
CVE-2026-6474
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

PostgreSQL postgresqlPostgreSQL server undersizes allocations, via integer wraparound

Risk 83
Severity
8.8
First published (updated )
CVE-2026-6473

PostgreSQL postgresqlPostgreSQL CREATE TYPE does not check multirange schema CREATE privilege

Risk 36
Severity
5.4
First published (updated )
CVE-2026-6472

PostgreSQL postgresqlBuffer Overflow

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2439326

PostgreSQL postgresqlBuffer Overflow

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2439324

PostgreSQL postgresqlMissing validation of type of input in PostgreSQL intarray extension selectivity estimator function …

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2439325
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

PostgreSQL postgresqlImproper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2439322

PostgreSQL postgresqlPostgreSQL pg_trgm heap buffer overflow writes pattern onto server memory

Risk 54
Severity
8.2
First published (updated )
CVE-2026-2007

PostgreSQL postgresqlPostgreSQL missing validation of multibyte character length executes arbitrary code

Risk 79
Severity
8.8
First published (updated )
CVE-2026-2006

PostgreSQL postgresqlPostgreSQL pgcrypto heap buffer overflow executes arbitrary code

Risk 79
Severity
8.8
First published (updated )
CVE-2026-2005

PostgreSQL postgresqlPostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code

Risk 79
Severity
8.8
First published (updated )
CVE-2026-2004
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

PostgreSQL postgresqlPostgreSQL oidvector discloses a few bytes of memory

Risk 22
Severity
4.3
First published (updated )
CVE-2026-2003

PostgreSQL postgresqlImproper search_path protection in PostgreSQL Anonymizer 2.5 allows any user with create privilege to gain superuser privileges

Risk 49
Severity
8
EPSS
0.04%
First published (updated )
CVE-2026-2361

PostgreSQL AnonymizerImproper search_path protection in PostgreSQL Anonymizer 2.5 allows any user to gain superuser privileges in PostgreSQL 14

Risk 49
Severity
8
EPSS
0.04%
First published (updated )
CVE-2026-2360

BleepingComputerZeroday Cloud hacking event awards $320,0000 for 11 zero days

Exploited
Zeroday
First published (updated )
News
BleepingComputer

PostgreSQL postgresqlMissing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-2414825
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

PostgreSQL postgresqlPostgreSQL CREATE STATISTICS does not check for schema CREATE privilege

Risk 19
Severity
3.1
First published (updated )
CVE-2025-12817

AxxonSoft Axxon One (C-Werk)PostgreSQL Upgrade from v10 to v17.4 in AxxonSoft Axxon One (C-Werk) 2.0.8 and earlier to Address Multiple Vulnerabilities

Risk 86
Severity
9.8
First published (updated )
CVE-2025-10226

PostgreSQL postgresql18.3.3

Risk 56
Severity
8.8
EPSS
0.03%
First published (updated )
CVE-2025-8714

PostgreSQL postgresqlPostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target server

Risk 56
Severity
8.8
EPSS
0.05%
First published (updated )
CVE-2025-8715

PostgreSQL postgresqlPostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table

Risk 13
Severity
3.1
EPSS
0.05%
First published (updated )
CVE-2025-8713
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203