PostgreSQL is one of the most commonly used open source database management systems. This paper describes weaknesses in the PostgreSQL configuration that may be abused for privilege escalation, as well as remote command execution and the uploading of arbitrary files to the system.