PGObject-Util-DBAdmin-1.2.0

Security Advisories (1)

CVE-2018-9246 (2018-06-18)

The PGObject::Util::DBAdmin module before 0.120.0 for Perl, as used in LedgerSMB through 1.5.x, insufficiently sanitizes or escapes variable values used as part of shell command execution, resulting in shell code injection via the create(), run_file(), backup(), or restore() function. The vulnerability allows unauthorized users to execute code with the same privileges as the running application.

https://archive.ledgersmb.org/ledger-smb-announce/msg00280.html

Changes for version 1.2.0 - 2020-10-21

Deprecate attributes 'username', 'password' and 'dbname'
Introduce new 'connect_data' attribute which can hold all the attributes supported by PostgreSQL as documented on https://www.postgresql.org/docs/current/libpq-connect.html#LIBPQ-PARAMKEYWORDS

Modules

PGObject::Util::DBAdmin

PostgreSQL Database Management Facilities for PGObject

Other files

To install PGObject::Util::DBAdmin, copy and paste the appropriate command in to your terminal.

cpanm

cpanm PGObject::Util::DBAdmin

CPAN shell

perl -MCPAN -e shell
install PGObject::Util::DBAdmin

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	Go to GitHub issues (only if GitHub is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)

Changes for version 1.2.0 - 2020-10-21

Modules

Other files

Module Install Instructions

Keyboard Shortcuts