Description
Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in translate_text.php (line 15): SELECT id, filename, extension, type FROM files where id = '\".$_GET['id'].\"'. An authenticated attacker can perform error-based SQL injection to extract database contents.
Published: 2026-07-01
Score: 9.3 Critical
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Guardian language‑system accepts an unvalidated GET parameter 'id' and directly concatenates it into a SQL SELECT statement in translate_text.php. An attacker can craft a malicious id value that triggers error‑based SQL injection, allowing extraction of database contents and compromising the confidentiality of stored data. The flaw aligns with CWE‑89, representing an injection weakness that can be exploited by an authenticated attacker.

Affected Systems

The advisory affects Guardian language‑system, a web‑based translation component. No specific product version is listed; the vulnerability exists in any deployment that includes the translate_text.php file handling id parameters as described.

Risk and Exploitability

The CVSS score of 9.3 indicates a critical severity. Because EPSS is not provided, the current exploitation probability is unknown, but the lack of a KEV listing suggests no confirmed public exploits yet. The attack likely occurs over the network via HTTP requests to translate_text.php, requiring authentication. The vulnerability's remote nature and high impact make it a top priority for remediation.

Generated by OpenCVE AI on July 1, 2026 at 23:02 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the vendor‑provided fix or upgrade to the latest version of Guardian language‑system.
  • If a patch is unavailable, implement input validation by rejecting non‑numeric id values or by using a prepared statement with bound parameters to prevent injection.
  • Restrict web access to translate_text.php to authorized users only or use a web application firewall to filter malicious patterns.

Generated by OpenCVE AI on July 1, 2026 at 23:02 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Jul 2026 16:30:00 +0000

Type Values Removed Values Added
Description Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in translate_text.php (line 15): SELECT id, filename, extension, type FROM files where id = '\".$_GET['id'].\"'. An authenticated attacker can perform error-based SQL injection to extract database contents.
Title Guardian Language-System Unauthenticated SQL Injection via id Parameter in translate_text.php
Weaknesses CWE-89
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 9.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}


Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-07-01T16:15:01.201Z

Reserved: 2026-03-25T18:43:09.827Z

Link: CVE-2026-34105

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-01T23:15:04Z

Weaknesses
  • CWE-89

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')