Dependency(github.com/jackc/pgx/v5) is vulnerable

go-gorm / postgres

GORM PostgreSQL driver

MIT License

225 stars 119 forks source link

Dependency(github.com/jackc/pgx/v5) is vulnerable #263

Closed richelieu-yang closed 2 months ago

richelieu-yang commented 5 months ago

CVE-2024-27289 8.1 Improper Neutralization of Special Elements used in an SQL Command ("SQL Injection") vulnerability with High severity found Results powered by Checkmarx(c)

PeterBocan commented 4 months ago

@jinzhu ~~can~~ could you please release the module as soon as possible? Thank you :)