Pgbouncer: >> Pgbouncer >> 1.19.0 Security Vulnerabilities
Untrusted search path in auth_query connection handler in PgBouncer before 1.25.1 allows an unauthenticated attacker to execute arbitrary SQL during authentication via a malicious search_path parameter in the StartupMessage.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-12-03
Password can be used past expiry in PgBouncer due to auth_query not taking into account Postgres its VALID UNTIL value, which allows an attacker to log in with an already expired password
CVSS Score
8.1
EPSS Score
0.001
Published
2025-04-16