| Titre | CodePhiliaX Chat2DB <=0.3.7 SQL Injection |
|---|
| Description | Multiple high-severity SQL Injection vulnerabilities in DMDBManage.java component. When processing database export operations for DM databases (e.g., via /api/rdb/database/export endpoint), the application fails to validate or sanitize user-supplied parameters such as schemaName and tableName. These parameters are directly concatenated into SQL query templates using String.format(). This allows authenticated attackers to inject malicious SQL clauses, bypass schema isolation, and extract table structures, metadata, and sensitive data from other privileged schemas. |
|---|
| La source | ⚠️ https://github.com/AnalogyC0de/public_exp/issues/21 |
|---|
| Utilisateur | Ana10gy (UID 93358) |
|---|
| Soumission | 02/03/2026 04:15 (il y a 2 mois) |
|---|
| Modérer | 14/03/2026 16:03 (12 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 351080 [CodePhiliaX Chat2DB jusqu’à 0.3.7 Database Export DMDBManage.java injection SQL] |
|---|
| Points | 20 |
|---|