Unrated severityNVD Advisory· Published Dec 22, 2008· Updated Apr 23, 2026
CVE-2008-2380
CVE-2008-2380
Description
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
Affected products
20cpe:2.3:a:courier-mta:courtier-authlib:0.52:*:*:*:*:*:*:*+ 19 more
- cpe:2.3:a:courier-mta:courtier-authlib:0.52:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.53:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.54:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.55:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.56:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.57:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.58:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.59:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.59.1:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.59.2:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.59.3:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.60:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.60.1:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.60.2:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.60.3:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.60.4:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.60.5:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.60.6:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.61.0:*:*:*:*:*:*:*
- cpe:2.3:a:courier-mta:courtier-authlib:0.61.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7News mentions
0No linked articles in our index yet.