Untrusted search path in auth_query connection handler in PgBouncer before 1.25.1 allows an unauthenticated attacker to execute arbitrary SQL during authentication via a malicious search_path parameter in the StartupMessage.
CVE-2025-12819: Untrusted search path in auth_query connection handler in PgBouncer before 1.25.1 allows an unauthenticated attacker to…
CVE-2025-12819: PgBouncer versions before 1.25.1 have an untrusted search path vulnerability in the auth_query connection handler, allowing unauthenticated attackers to execute arbitrary SQL via a malicious search_path parameter.