A tunisian researcher of vulnerability-labs discovered a critical prostgre sql issue on the Chinese Academy of Governance NSA. Chokri B.A. alias "Me!ster" discovered this week a nice issue to the china national vulnerability database of information security. The vulnerability has been fixed/patched within 7 days after our security report arrived on the chinese postbox & the coordination process via CNNVD was perfect navigated. The bug was located in a wrong validated server request in the main website. The vulnerability allows an attacker (remote) to infiltrate the vulnerable application database management system of the affected vulnerable website (web-server). Remote Attackers & privileged ...