CVE-2024-5753
published 2024-07-05CVE-2024-5753: vanna-ai/vanna version v0.3.4 is vulnerable to SQL injection in some file-critical functions such as `pg_read_file()`. This vulnerability allows…
PriorityP351high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
EPSS
0.60%
44.4th percentile
vanna-ai/vanna version v0.3.4 is vulnerable to SQL injection in some file-critical functions such as `pg_read_file()`. This vulnerability allows unauthenticated remote users to read arbitrary local files on the victim server, including sensitive files like `/etc/passwd`, by exploiting the exposed SQL queries via a Python Flask API.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| vanna-ai | vanna | 0 – 0.3.4 | — |
| vanna-ai | vanna-ai_vanna | unspecified – latest | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Vanna vulnerable to SQL Injection
osv·2024-07-05
CVE-2024-5753 [HIGH] Vanna vulnerable to SQL Injection
Vanna vulnerable to SQL Injection
vanna-ai/vanna version v0.3.4 is vulnerable to SQL injection in some file-critical functions such as `pg_read_file()`. This vulnerability allows unauthenticated remote users to read arbitrary local files on the victim server, including sensitive files like `/etc/passwd`, by exploiting the exposed SQL queries via a Python Flask API.
GHSA
Vanna vulnerable to SQL Injection
ghsa·2024-07-05
CVE-2024-5753 [HIGH] CWE-200 Vanna vulnerable to SQL Injection
Vanna vulnerable to SQL Injection
vanna-ai/vanna version v0.3.4 is vulnerable to SQL injection in some file-critical functions such as `pg_read_file()`. This vulnerability allows unauthenticated remote users to read arbitrary local files on the victim server, including sensitive files like `/etc/passwd`, by exploiting the exposed SQL queries via a Python Flask API.
Suricata
ET WEB_CLIENT Spectre Exploit Javascript
suricata·2018-01-09
CVE-2017-5753 ET WEB_CLIENT Spectre Exploit Javascript
ET WEB_CLIENT Spectre Exploit Javascript
Rule: alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_CLIENT Spectre Exploit Javascript"; flow:established,to_client; file.data; content:"0x1000000"; fast_pattern; pcre:"/(?[^=\s]*)\s*=\s*0x1000000.+?\x28\s*\x28\s*\x28\s*\w+\s*<<\s*12\s*\x29\s*\|\s*0\s*\x29\s*\+\s*(?P=var1)\s*\x29\s*\|\s*0/s"; reference:cve,2017-5753; reference:cve,2017-5715; reference:url,github.com/cgvwzq/spectre; classtype:attempted-user; sid:2025188; rev:7; metadata:affected_product Web_Browser_Plugins, attack_target Client_Endpoint, created_at 2018_01_09, cve CVE_2017_5753, deployment Perimeter, performance_impact Moderate, signature_severity Major, tag Web_Client_Attacks, updated_at 2024_03_14;)
No public exploits indexed.
No writeups or analysis indexed.
2024-07-05
Published