A vulnerability was found in elixir-ecto postgrex up to 0.22.1 and classified as critical . Impacted is the function handle_connect in the library lib/postgrex/notifications.ex . Such manipulation of the argument channel leads to sql injection. This vulnerability is listed as CVE-2026-32687 . The attack may be performed from remote. There is no available exploit. It is suggested to upgrade the affected component.