Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/go-pg/pg/v9

go

Package pg implements a PostgreSQL client. go-pg recognizes `?` in queries as placeholders and replaces them with parameters when queries are executed. `?` can be escaped with backslash. Parameters are escaped before replacing according to PostgreSQL rules. Specifically:

View on github.com · View on proxy.golang.org

Security Advisories for github.com/go-pg/pg/v9 in go

Moderate
5 months ago

go-pg SQL injection vulnerability via the component /types/append_value.go GSA_kwCzR0hTQS02eHAzLXA1OXAtcTRmas4ABJAh

go github.com/go-pg/pg, github.com/go-pg/pg/v9

Filter by Severity

Moderate 1