Vulnerability Report: GO-2023-1494
- CVE-2014-125064, GHSA-g7mw-9pf9-p2pm
- Affects: github.com/elgs/gosqljson
- Published: Feb 01, 2023
- Modified: Jun 12, 2023
There is a potential for SQL injection through manipulation of the sqlStatement argument.
Affected Packages
-
PathVersionsSymbols
-
before v0.0.0-20220916234230-750f26ee23c7
5 affected symbols
Aliases
References
- https://github.com/elgs/gosqljson/commit/2740b331546cb88eb61771df4c07d389e9f0363a
- https://vuln.go.dev/ID/GO-2023-1494.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.