CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-7816

OS command injection (CWE-78) vulnerability in pgAdmin 4 Import/Export query export. User-supplied input was interpolated directly into a psql \copy metacommand template without sanitization. An authenticated user could inject ") TO PROGRAM 'cmd'" to break out of the \copy (...) context and achieve arbitrary command execution on the pgAdmin server, or ") TO '/path'" for arbitrary file write. Additional fields (format, on_error, log_verbosity) were also raw-interpolated and exploitable. Fix adds a parens-balance parser modeled on psql's strtokx tokenizer, allow-lists format/on_error/log_verbosity, rejects null bytes in the query, and tightens type and gating checks. This issue affects pgAdmin 4: before 9.15.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.2%

CVSS Severity

CVSS v3 Score 8.8

References

https://github.com/pgadmin-org/pgadmin4/issues/9899

Products affected by CVE-2026-7816

Pgadmin » Pgadmin 4 » Version: 9.10

cpe:2.3:a:pgadmin:pgadmin_4:9.10
Pgadmin » Pgadmin 4 » Version: 9.4

cpe:2.3:a:pgadmin:pgadmin_4:9.4
Pgadmin » Pgadmin 4 » Version: 9.5

cpe:2.3:a:pgadmin:pgadmin_4:9.5
Pgadmin » Pgadmin 4 » Version: 9.6

cpe:2.3:a:pgadmin:pgadmin_4:9.6
Pgadmin » Pgadmin 4 » Version: 9.7

cpe:2.3:a:pgadmin:pgadmin_4:9.7
Pgadmin » Pgadmin 4 » Version: 9.8

cpe:2.3:a:pgadmin:pgadmin_4:9.8
Pgadmin » Pgadmin 4 » Version: 9.9

cpe:2.3:a:pgadmin:pgadmin_4:9.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-7816

Products

Pricing

Contact Us