CVE-2026-29953 | SchemaHero 0.23.0 Parameter column.go columnAsInsert column sql injection (EUVD-2026-17131)

A vulnerability was found in SchemaHero 0.23.0 and classified as critical. The impacted element is the function columnAsInsert in the library plugins/postgres/lib/column.go of the component Parameter Handler. Such manipulation of the argument column leads to sql injection.

This vulnerability is listed as CVE-2026-29953. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More