CVEs-PoC/2025/CVE-2025-8714.md at 4e4e30233e70832d643d5c6ab6fbfa6f130b4bb1

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-29 20:39:28 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

Untrusted data inclusion in pg_dump in PostgreSQL allows a malicious superuser of the origin server to inject arbitrary code for restore-time execution as the client operating system account running psql to restore the dump, via psql meta-commands. pg_dumpall is also affected. pg_restore is affected when used to generate a plain-format dump. This is similar to MySQL CVE-2024-21096. Versions before PostgreSQL 17.6, 16.10, 15.14, 14.19, and 13.22 are affected.

POC

Reference

No PoCs from references.

Github

https://github.com/PuddinCat/GithubRepoSpider
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/orderby99/CVE-2025-8714-POC
https://github.com/sharmapintu987654321-boop/Nessus-Scan-Reports
https://github.com/w4zu/Debian_security

1.5 KiB Raw Blame History

CVE-2025-8714

Description

POC

Reference

Github

1.5 KiB

Raw Blame History