SQL Injection in Elixir-ecto Postgrex

CVE-2026-58225

SQL Injection vulnerability in elixir-ecto postgrex allows an attacker who can influence a LISTEN channel name to inject SQL into the reconnect replay query, causing a denial of service of the notification connection. Postgrex.Notificatio…

Vulnerability class: SQL Injection

Affected products

Weakness classification (CWE)

References