Vanna v0.3.4 is vulnerable to SQL injection in its DuckDB integration exposed to its Flask Web APIs. Attackers can inject malicious SQL training data and generate corresponding queries to write arbitrary files on the victim's file system, such as backdoor.php with contents `<?php system($_GET[0]); ?>`. This can lead to command execution or the creation of backdoors.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: @huntr_ai
Published: 2024-06-28T19:27:33.049Z
Updated: 2024-08-01T21:25:02.611Z
Reserved: 2024-06-10T23:46:32.719Z
Link: CVE-2024-5827
Vulnrichment
Updated: 2024-08-01T21:25:02.611Z
NVD
Status : Awaiting Analysis
Published: 2024-06-28T20:15:03.217
Modified: 2024-07-01T12:37:24.220
Link: CVE-2024-5827
Redhat
No data.