VDB

GCVE-110-MAGEIA-2023-261

GCVE-110-MAGEIA-2023-261
Advisory Published
Vulnetix · Advisory published September 11, 2023
Extension script @substitutions@ within quoting allow SQL injection. (CVE-2023-39417) MERGE fails to enforce UPDATE or SELECT row security policies. (CVE-2023-39418)

Affected Products

VendorProductVersionsPlatforms
Mageiapostgresql1313.12-1.mga8 (unaffected), 0 (affected)
Mageiapostgresql130 (affected), 13.12-1.mga9 (unaffected)
Mageiapostgresql110 (affected), 11.21-1.mga8 (unaffected)
Mageiapostgresql1515.4-1.mga9 (unaffected), 0 (affected)

Browse GCVE Records

73,738 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›