{"id":"CVE-2008-2380","details":"SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.","modified":"2025-08-09T19:01:27Z","published":"2008-12-22T15:30:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/33235"},{"type":"ADVISORY","url":"http://secunia.com/advisories/34234"},{"type":"ADVISORY","url":"http://security.gentoo.org/glsa/glsa-200903-25.xml"},{"type":"ADVISORY","url":"http://www.courier-mta.org/authlib/changelog.html"},{"type":"FIX","url":"http://www.securityfocus.com/bid/32926"},{"type":"WEB","url":"http://osvdb.org/50811"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/47494"}],"schema_version":"1.7.3"}