Enviar #706120: FIT2CLOUD SQLBot 1.3.0 Missing Authenticationinformación

Título	FIT2CLOUD SQLBot 1.3.0 Missing Authentication
Descripción	SQLBot version 1.3.0 and earlier contains a missing authentication vulnerability in the `/api/v1/datasource/uploadExcel` endpoint, allowing a remote unauthenticated attacker to upload arbitrary Excel/CSV files and inject data directly into the PostgreSQL database.
Fuente	⚠️ https://github.com/yaowenxiao721/Poc/blob/main/SQLBot/SQLBot-Unauthenticated-File-Upload.md
Usuario	yaowenxiao (UID 82929)
Sumisión	2025-12-04 09:02 (hace 6 meses)
Moderación	2026-02-18 09:51 (3 months later)
Estado	Aceptado
Entrada de VulDB	342228 [Dataease SQLBot hasta 1.4.x Endpoint uploadExcel to_sql autenticación débil]
Puntos	20

Do you need the next level of professionalism?

Upgrade your account now!