EUVD-2024-54681

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2024-44905

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/appendvalue.go. CVE-2024-44905 Note that Nessus relies on the...

SUSE CVE-2024-44905

go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/appendvalue.go...

SQL Injection

github.com/go-pg/pg is vulnerable to SQL injection. The vulnerability is due to improper handling of input in the /types/appendvalue.go component, which allows an attacker to inject and execute arbitrary SQL commands...

CVE-2024-44905

go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/appendvalue.go...

GHSA-6XP3-P59P-Q4FJ go-pg SQL injection vulnerability via the component /types/append_value.go

go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/appendvalue.go...

go-pg SQL injection vulnerability via the component /types/append_value.go

go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/appendvalue.go...

SQL Injection

Overview Affected versions of this package are vulnerable to SQL Injection in the /types/appendvalue.go component. When a placeholder is directly preceded by a minus - and not separated by any whitespace, the library does not handle the particular case when a negative number is inserted for the...

SQL Injection

Overview Affected versions of this package are vulnerable to SQL Injection in the /types/appendvalue.go component. When a placeholder is directly preceded by a minus - and not separated by any whitespace, the library does not handle the particular case when a negative number is inserted for the...

CVE-2024-44905

go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/appendvalue.go...

CVE-2024-44905

go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/appendvalue.go...

DEBIAN-CVE-2024-44905

go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/appendvalue.go...

CVE-2024-44905

go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/appendvalue.go...

CVE-2024-44905

go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/appendvalue.go...

go-pg pg 安全漏洞

go-pg pg is a go-pg open source ORM for Golang. A security vulnerability exists in go-pg pg version v10.13.0, which stems from an unvalidated /types/appendvalue.go component that could lead to an SQL injection attack...

CVE-2024-44905

go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/appendvalue.go...

PT-2025-25328 · Go-Pg · Go-Pg

Name of the Vulnerable Software and Affected Versions: go-pg pg version 10.13.0 Description: A SQL injection issue was discovered in the component /types/append value.go. This allows for potential SQL injection attacks. Recommendations: For go-pg pg version 10.13.0, consider restricting access to...

CVE-2024-44905

CVE-2024-44905 affects go-pg pg v10.13.0 with an SQL injection flaw in /types/append_value.go. The NVD metrics (CVSS v3.1: 6.5, Network attack vector, no privileges, user interaction required, Confidentiality Impact High) indicate a remote risk if an attacker can trigger the vulnerable code path....