CVE Database · CVE-2008-2380
CVSS v3.1
N/A
EPSS
1.82%
Published
Dec 22, 2008
Modified
Apr 22, 2026
Public PoC / Exploit
All weaponized →No public PoC or exploit code indexed for this CVE.
Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
Weaknesses (CWE)
Affected Products (20)
References (14)
