nss_postgresql 0.6.1 and before allows a remote attacker to execute arbitrary SQL queries by inserting SQL code into an HTTP request.Referenceshttp://www.securityfocus.com/bid/3315http://www.securityfocus.com/archive/1/213331https://exchange.xforce.ibmcloud.com/vulnerabilities/7111
