High severityNVD Advisory· Published Jan 5, 2023· Updated Apr 7, 2025
CVE-2023-22626
CVE-2023-22626
Description
PgHero before 3.1.0 allows Information Disclosure via EXPLAIN because query results may be present in an error message. (Depending on database user privileges, this may only be information from the database, or may be information from file contents on the database server.)
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
pgheroRubyGems | < 3.1.0 | 3.1.0 |
Affected products
2- PgHero/PgHerodescription
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.