There is a potential for SQL injection through manipulation of the sqlStatement argument.
{ "url": "https://pkg.go.dev/vuln/GO-2023-1494", "review_status": "REVIEWED" }
{ "imports": [ { "symbols": [ "ExecDb", "QueryDbToArray", "QueryDbToArrayJson", "QueryDbToMap", "QueryDbToMapJson" ], "path": "github.com/elgs/gosqljson" } ] }