jinzhu/gorm

Releases24

Frequency2 months 1 week

Last Release almost 6 years ago

Stars660

GORM V1, V2 moved to https://github.com/go-gorm/gorm

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-15562 ↗	Aug 26, 2019Monday, 26 August 2019, 13:15	9.8 CRITICAL	7.5 HIGH
GORM before 1.9.10 allows SQL injection via incomplete parentheses. NOTE: Misusing Gorm by passing untrusted user input where Gorm expects trusted SQL fragments is a vulnerability in the application, not in Gorm