GO-2023-1494 SQL injection in github.com/elgs/gosqljson

There is a potential for SQL injection through manipulation of the sqlStatement argument...

SQL Injection

github.com/elgs/gosqljson is vulnerable to SQL injection. The vulnerability exists in multiple functions of gosqljson.go due to improper argument handling of the database queries which allows an attacker to inject and execute arbitrary SQL queries...

GHSA-G7MW-9PF9-P2PM gosqljson SQL Injection vulnerability

A vulnerability, which was classified as critical, has been found in elgs gosqljson. This issue affects the function QueryDbToArray/QueryDbToMap/ExecDb of the file gosqljson.go. The manipulation of the argument sqlStatement leads to sql injection. The name of the patch is...

gosqljson SQL Injection vulnerability

A vulnerability, which was classified as critical, has been found in elgs gosqljson. This issue affects the function QueryDbToArray/QueryDbToMap/ExecDb of the file gosqljson.go. The manipulation of the argument sqlStatement leads to sql injection. The name of the patch is...

PT-2023-10134 · Unknown · Elgs Gosqljson

Name of the Vulnerable Software and Affected Versions: elgs gosqljson affected versions not specified Description: A critical issue has been found in elgs gosqljson, affecting the functions QueryDbToArray/QueryDbToMap/ExecDb of the file gosqljson.go. The manipulation of the argument sqlStatement...