diff --git a/datasette/default_permissions.py b/datasette/default_permissions.py
index 960429fc..5a99d0d8 100644
--- a/datasette/default_permissions.py
+++ b/datasette/default_permissions.py
@@ -59,6 +59,7 @@ def register_permissions():
             takes_database=True,
             takes_resource=False,
             default=True,
+            implies_can_view=True,
         ),
         Permission(
             name="permissions-debug",
diff --git a/tests/test_permissions.py b/tests/test_permissions.py
index cad0525f..b3987cff 100644
--- a/tests/test_permissions.py
+++ b/tests/test_permissions.py
@@ -1183,6 +1183,10 @@ async def test_actor_restrictions(
         ({"a": ["update-row"]}, "view-instance", None, False),
         # view-table on a resource implies view-instance
         ({"r": {"db1": {"t1": ["view-table"]}}}, "view-instance", None, True),
+        # execute-sql on a database implies view-instance, view-database
+        ({"d": {"db1": ["es"]}}, "view-instance", None, True),
+        ({"d": {"db1": ["es"]}}, "view-database", "db1", True),
+        ({"d": {"db1": ["es"]}}, "view-database", "db2", False),
         # update-row on a resource does not imply view-instance
         ({"r": {"db1": {"t1": ["update-row"]}}}, "view-instance", None, False),
         # view-database on a resource implies view-instance