{"uuid": "37c28111-1e16-4341-8bb1-658e6efcacab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12819", "type": "seen", "source": "https://bsky.app/profile/pgexperts.bsky.social/post/3ml5apzpesz2v", "content": "pgBouncer 1.25.1 fixes CVE-2025-12819 \u2014 pre-auth arbitrary SQL execution. Anyone on 1.25.0 or earlier should treat this as urgent. A pooler is a parser sitting on a network port. Parsers are attack surface. \"It's just a proxy\" is not a threat model.\nRelease: github.com/pgbouncer/pg...\npgexperts.com", "creation_timestamp": "2026-05-05T22:36:02.768189Z"}