Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-27289

pgx is a PostgreSQL driver and toolkit for Go. Prior to version 4.18.2, SQL injection can occur when all of the following conditions are met: the non-default simple protocol is used; a placeholder for a numeric value must be immediately preceded by a minus; there must be a second placeholder for a string value after the first placeholder; both must be on the same line; and both parameter values must be user-controlled. The problem is resolved in v4.18.2. As a workaround, do not use the simple protocol or do not place a minus directly before a placeholder.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.6%
CVSS Severity
CVSS v3 Score 8.1
Products affected by CVE-2024-27289
  • Jackc » Pgx » Version: N/A
    cpe:2.3:a:jackc:pgx:-
  • Jackc » Pgx » Version: 2.0.0
    cpe:2.3:a:jackc:pgx:2.0.0
  • Jackc » Pgx » Version: 2.1.0
    cpe:2.3:a:jackc:pgx:2.1.0
  • Jackc » Pgx » Version: 2.10.0
    cpe:2.3:a:jackc:pgx:2.10.0
  • Jackc » Pgx » Version: 2.11.0
    cpe:2.3:a:jackc:pgx:2.11.0
  • Jackc » Pgx » Version: 2.2.0
    cpe:2.3:a:jackc:pgx:2.2.0
  • Jackc » Pgx » Version: 2.3.0
    cpe:2.3:a:jackc:pgx:2.3.0
  • Jackc » Pgx » Version: 2.4.0
    cpe:2.3:a:jackc:pgx:2.4.0
  • Jackc » Pgx » Version: 2.5.0
    cpe:2.3:a:jackc:pgx:2.5.0
  • Jackc » Pgx » Version: 2.6.0
    cpe:2.3:a:jackc:pgx:2.6.0
  • Jackc » Pgx » Version: 2.7.0
    cpe:2.3:a:jackc:pgx:2.7.0
  • Jackc » Pgx » Version: 2.7.1
    cpe:2.3:a:jackc:pgx:2.7.1
  • Jackc » Pgx » Version: 2.8.0
    cpe:2.3:a:jackc:pgx:2.8.0
  • Jackc » Pgx » Version: 2.8.1
    cpe:2.3:a:jackc:pgx:2.8.1
  • Jackc » Pgx » Version: 2.9.0
    cpe:2.3:a:jackc:pgx:2.9.0
  • Jackc » Pgx » Version: 3.0.0
    cpe:2.3:a:jackc:pgx:3.0.0
  • Jackc » Pgx » Version: 3.0.1
    cpe:2.3:a:jackc:pgx:3.0.1
  • Jackc » Pgx » Version: 3.1.0
    cpe:2.3:a:jackc:pgx:3.1.0
  • Jackc » Pgx » Version: 3.2.0
    cpe:2.3:a:jackc:pgx:3.2.0
  • Jackc » Pgx » Version: 3.3.0
    cpe:2.3:a:jackc:pgx:3.3.0
  • Jackc » Pgx » Version: 3.4.0
    cpe:2.3:a:jackc:pgx:3.4.0
  • Jackc » Pgx » Version: 3.5.0
    cpe:2.3:a:jackc:pgx:3.5.0
  • Jackc » Pgx » Version: 3.6.0
    cpe:2.3:a:jackc:pgx:3.6.0
  • Jackc » Pgx » Version: 3.6.1
    cpe:2.3:a:jackc:pgx:3.6.1
  • Jackc » Pgx » Version: 3.6.2
    cpe:2.3:a:jackc:pgx:3.6.2
  • Jackc » Pgx » Version: 4.0.0
    cpe:2.3:a:jackc:pgx:4.0.0
  • Jackc » Pgx » Version: 4.0.1
    cpe:2.3:a:jackc:pgx:4.0.1
  • Jackc » Pgx » Version: 4.1.0
    cpe:2.3:a:jackc:pgx:4.1.0
  • Jackc » Pgx » Version: 4.1.1
    cpe:2.3:a:jackc:pgx:4.1.1
  • Jackc » Pgx » Version: 4.1.2
    cpe:2.3:a:jackc:pgx:4.1.2
  • Jackc » Pgx » Version: 4.10.0
    cpe:2.3:a:jackc:pgx:4.10.0
  • Jackc » Pgx » Version: 4.10.1
    cpe:2.3:a:jackc:pgx:4.10.1
  • Jackc » Pgx » Version: 4.11.0
    cpe:2.3:a:jackc:pgx:4.11.0
  • Jackc » Pgx » Version: 4.12.0
    cpe:2.3:a:jackc:pgx:4.12.0
  • Jackc » Pgx » Version: 4.13.0
    cpe:2.3:a:jackc:pgx:4.13.0
  • Jackc » Pgx » Version: 4.14.0
    cpe:2.3:a:jackc:pgx:4.14.0
  • Jackc » Pgx » Version: 4.14.1
    cpe:2.3:a:jackc:pgx:4.14.1
  • Jackc » Pgx » Version: 4.15.0
    cpe:2.3:a:jackc:pgx:4.15.0
  • Jackc » Pgx » Version: 4.16.0
    cpe:2.3:a:jackc:pgx:4.16.0
  • Jackc » Pgx » Version: 4.16.1
    cpe:2.3:a:jackc:pgx:4.16.1
  • Jackc » Pgx » Version: 4.17.0
    cpe:2.3:a:jackc:pgx:4.17.0
  • Jackc » Pgx » Version: 4.17.1
    cpe:2.3:a:jackc:pgx:4.17.1
  • Jackc » Pgx » Version: 4.17.2
    cpe:2.3:a:jackc:pgx:4.17.2
  • Jackc » Pgx » Version: 4.18.0
    cpe:2.3:a:jackc:pgx:4.18.0
  • Jackc » Pgx » Version: 4.18.1
    cpe:2.3:a:jackc:pgx:4.18.1
  • Jackc » Pgx » Version: 4.2.0
    cpe:2.3:a:jackc:pgx:4.2.0
  • Jackc » Pgx » Version: 4.2.1
    cpe:2.3:a:jackc:pgx:4.2.1
  • Jackc » Pgx » Version: 4.3.0
    cpe:2.3:a:jackc:pgx:4.3.0
  • Jackc » Pgx » Version: 4.4.0
    cpe:2.3:a:jackc:pgx:4.4.0
  • Jackc » Pgx » Version: 4.4.1
    cpe:2.3:a:jackc:pgx:4.4.1
  • Jackc » Pgx » Version: 4.5.0
    cpe:2.3:a:jackc:pgx:4.5.0
  • Jackc » Pgx » Version: 4.6.0
    cpe:2.3:a:jackc:pgx:4.6.0
  • Jackc » Pgx » Version: 4.7.0
    cpe:2.3:a:jackc:pgx:4.7.0
  • Jackc » Pgx » Version: 4.7.1
    cpe:2.3:a:jackc:pgx:4.7.1
  • Jackc » Pgx » Version: 4.7.2
    cpe:2.3:a:jackc:pgx:4.7.2
  • Jackc » Pgx » Version: 4.8.0
    cpe:2.3:a:jackc:pgx:4.8.0
  • Jackc » Pgx » Version: 4.8.1
    cpe:2.3:a:jackc:pgx:4.8.1
  • Jackc » Pgx » Version: 4.9.0
    cpe:2.3:a:jackc:pgx:4.9.0
  • Jackc » Pgx » Version: 4.9.1
    cpe:2.3:a:jackc:pgx:4.9.1
  • Jackc » Pgx » Version: 4.9.2
    cpe:2.3:a:jackc:pgx:4.9.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved