pgAdmin 9.11 Restore Key Bypass Enables Remote Exec
CVE-2026-1707 Published on February 5, 2026
Restore restriction bypass via key disclosure vulnerability (pgAdmin 4)
pgAdmin versions 9.11 are affected by a Restore restriction bypass via key disclosure vulnerability that occurs when running in server mode and performing restores from PLAIN-format dump files. An attacker with access to the pgAdmin web interface can observe an active restore operation, extract the `\restrict` key in real time, and race the restore process by overwriting the restore script with a payload that re-enables meta-commands using `\unrestrict <key>`. This results in reliable command execution on the pgAdmin host during the restore operation.
Vulnerability Analysis
CVE-2026-1707 can be exploited with network access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be low. considered to have a small impact on confidentiality and integrity and availability.
Weakness Type
What is an Authorization Vulnerability?
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CVE-2026-1707 has been classified to as an Authorization vulnerability or weakness.
Products Associated with CVE-2026-1707
Want to know whenever a new CVE is published for PostgreSQL pgAdmin? stack.watch will email you.
Affected Versions
pgadmin.org pgAdmin 4 Version 9.11 is affected by CVE-2026-1707Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.