CVE-2026-41889
- EPSS 0.36%
- Veröffentlicht 08.05.2026 15:53:00
- Zuletzt bearbeitet 21.05.2026 19:58:12
pgx is a PostgreSQL driver and toolkit for Go. Prior to version 5.9.2, SQL injection can occur when the non-default simple protocol is used, a dollar quoted string literal is used in the SQL query, that string literal contains text that would be woul...
CVE-2026-33815
- EPSS 0.41%
- Veröffentlicht 07.04.2026 15:19:24
- Zuletzt bearbeitet 21.05.2026 19:58:03
Memory-safety vulnerability in github.com/jackc/pgx/v5.
CVE-2026-33816
- EPSS 0.38%
- Veröffentlicht 07.04.2026 15:19:24
- Zuletzt bearbeitet 21.05.2026 19:58:43
Memory-safety vulnerability in github.com/jackc/pgx/v5.
CVE-2024-27289
- EPSS 0.85%
- Veröffentlicht 06.03.2024 19:15:08
- Zuletzt bearbeitet 21.05.2026 19:57:50
pgx is a PostgreSQL driver and toolkit for Go. Prior to version 4.18.2, SQL injection can occur when all of the following conditions are met: the non-default simple protocol is used; a placeholder for a numeric value must be immediately preceded by a...
CVE-2024-27304
- EPSS 1.11%
- Veröffentlicht 06.03.2024 19:15:08
- Zuletzt bearbeitet 21.05.2026 19:58:35
pgx is a PostgreSQL driver and toolkit for Go. SQL injection can occur if an attacker can cause a single query or bind message to exceed 4 GB in size. An integer overflow in the calculated message size can cause the one large message to be sent as mu...