| 제목 | Vanna AI Vanna 2.0.2 Direct SQL Injection via Legacy Flask API in Vanna |
|---|
| 설명 | Vanna <= 2.0.2 contains a direct SQL injection vulnerability in its legacy Flask API. The `/api/v0/update_sql` endpoint allows an unauthenticated attacker to store arbitrary SQL statements in the server-side cache, and the `/api/v0/run_sql` endpoint retrieves and executes them directly against the connected database without any validation or parameterization. Combined with the default `NoAuth()` authentication (which requires no credentials), this creates a complete unauthenticated remote SQL injection chain that does not depend on LLM behavior. |
|---|
| 원천 | ⚠️ https://github.com/yidaozhongqing/York/issues/1 |
|---|
| 사용자 | York Shen (UID 97025) |
|---|
| 제출 | 2026. 04. 02. AM 09:30 (2 개월 ago) |
|---|
| 모더레이션 | 2026. 04. 24. PM 08:47 (22 days later) |
|---|
| 상태 | 중복 |
|---|
| VulDB 항목 | 351153 [vanna-ai vanna 까지 2.0.2 Endpoint __init__.py update_sql SQL 주입] |
|---|
| 포인트들 | 0 |
|---|