Rapid7's vulnerability research team says attackers exploited a PostgreSQL security flaw as a zero-day to breach the network ...

The vulnerability in the PostgreSQL interactive tool (psql) can lead to arbitrary code execution (ACE) and there is also a ...

PostgreSQL SQL injection flaw (CVE-2025-1094) exploited alongside BeyondTrust zero-day, enabling arbitrary code execution.

Discover how a critical PostgreSQL vulnerability led to a significant cyberattack on the US Treasury, exposing sensitive financial data.

Rapid7 researchers believe the BeyondTrust Remote Support attacks from December also exploited a zero-day flaw in PostgreSQL.

Analysis When Microsoft rolled out an open source extension stack for PostgreSQL to handle document-style data, it wasn't ...

Supabase is the open-source Firebase alternative that features an impressive collection of tools like PostgreSQL, user ...

Rapid7 finds a new zero-day vulnerability in PostgreSQL and links it to chain of attacks against a BeyondTrust Remote Support ...

"The era of overpriced, proprietary databases is over. This benchmark confirms there’s a better way," said Nancy Hensley, ...

The vulnerability is found in several libpq functions. Inputs are not sufficiently sanitized, allowing attackers to execute ...

Version 13 of the Postgres extension Citus provides new query and optimizer functions from PostgreSQL 17 for distributed ...

Provides optionality and flexibility for customers with a streamlined process and reusable framework for quickly adopting future PostgreSQL versions SUNNYVALE, Calif., January 30, 2025--(BUSINESS ...