Dataease Sqlbot vulnerabilities
9 known vulnerabilities affecting dataease/sqlbot.
Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH5MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2026-32950P2HIGHCVSS 8.8fixed in 1.7.02026-03-20
CVE-2026-32950 [HIGH] CWE-78 CVE-2026-32950: SQLBot is an intelligent data query system based on a large language model and RAG. Versions prior t
SQLBot is an intelligent data query system based on a large language model and RAG. Versions prior to 1.7.0 contain a critical SQL Injection vulnerability in the /api/v1/datasource/uploadExcel endpoint that enables Remote Code Execution (RCE), allowing any authenticated user (even the lowest-privileged) to fully compromise the backend server. The root
nvd
CVE-2026-33324P2HIGHCVSS 8.8fixed in 1.7.12026-05-05
CVE-2026-33324 [HIGH] CWE-89 CVE-2026-33324: SQLBot is an intelligent Text-to-SQL system based on large language models and RAG. In versions 1.7.
SQLBot is an intelligent Text-to-SQL system based on large language models and RAG. In versions 1.7.0 and earlier, the Text2SQL chat interface is vulnerable to prompt injection. The user-provided question parameter is directly concatenated into the LLM prompt without filtering or escaping, and the SQL extracted from the LLM response is executed against
nvd
CVE-2026-32622P2HIGHCVSS 8.8fixed in 1.6.02026-03-19
CVE-2026-32622 [HIGH] CWE-20 CVE-2026-32622: SQLBot is an intelligent data query system based on a large language model and RAG. Versions 1.5.0 a
SQLBot is an intelligent data query system based on a large language model and RAG. Versions 1.5.0 and below contain a Stored Prompt Injection vulnerability that chains three flaws: a missing permission check on the Excel upload API allowing any authenticated user to upload malicious terminology, unsanitized storage of terminology descriptions containi
nvd
CVE-2026-42463P3HIGHCVSS 8.1fixed in 1.8.02026-05-13
CVE-2026-42463 [HIGH] CWE-639 CVE-2026-42463: SQLBot is an intelligent Text-to-SQL system based on large language models and RAG. Prior to 1.8.0,
SQLBot is an intelligent Text-to-SQL system based on large language models and RAG. Prior to 1.8.0, SQLBot contains a Cross-Workspace IDOR (Insecure Direct Object Reference) and Authorization Bypass vulnerability in the /api/v1/datasource/exportDsSchema and /api/v1/datasource/uploadDsSchema endpoints. An attacker can access and modify database schemas
nvd
CVE-2026-32949P3HIGHCVSS 7.5fixed in 1.7.02026-03-20
CVE-2026-32949 [HIGH] CWE-73 CVE-2026-32949: SQLBot is an intelligent data query system based on a large language model and RAG. Versions prior t
SQLBot is an intelligent data query system based on a large language model and RAG. Versions prior to 1.7.0 contain a Server-Side Request Forgery (SSRF) vulnerability that allows an attacker to retrieve arbitrary system and application files from the server. An attacker can exploit the /api/v1/datasource/check endpoint by configuring a forged MySQL dat
nvd
CVE-2025-15597P3MEDIUMCVSS 6.3v1.0v1.1+3 more2026-03-02
CVE-2025-15597 [MEDIUM] CWE-266 CVE-2025-15597: A vulnerability has been found in Dataease SQLBot up to 1.4.0. This affects an unknown function of t
A vulnerability has been found in Dataease SQLBot up to 1.4.0. This affects an unknown function of the file backend/apps/system/api/assistant.py of the component API Endpoint. Such manipulation leads to improper access controls. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to v
nvd
CVE-2025-69285P3MEDIUMCVSS 6.1fixed in 1.5.02026-01-21
CVE-2025-69285 [MEDIUM] CWE-306 CVE-2025-69285: SQLBot is an intelligent data query system based on a large language model and RAG. Versions prior t
SQLBot is an intelligent data query system based on a large language model and RAG. Versions prior to 1.5.0 contain a missing authentication vulnerability in the /api/v1/datasource/uploadExcel endpoint, allowing a remote unauthenticated attacker to upload arbitrary Excel/CSV files and inject data directly into the PostgreSQL database. The endpoint i
nvd
CVE-2025-15598P3MEDIUMCVSS 5.9v1.5.0v1.5.12026-03-03
CVE-2025-15598 [MEDIUM] CWE-345 CVE-2025-15598: A vulnerability was found in Dataease SQLBot up to 1.5.1. This impacts the function validateEmbedded
A vulnerability was found in Dataease SQLBot up to 1.5.1. This impacts the function validateEmbedded of the file backend/apps/system/middleware/auth.py of the component JWT Token Handler. Performing a manipulation results in improper verification of cryptographic signature. The attack can be initiated remotely. The attack is considered to have high
nvd
CVE-2026-5417P4MEDIUMCVSS 4.7v1.0v1.1+5 more2026-04-02
CVE-2026-5417 [MEDIUM] CWE-918 CVE-2026-5417: A vulnerability was determined in Dataease SQLbot up to 1.6.0. This issue affects the function get_e
A vulnerability was determined in Dataease SQLbot up to 1.6.0. This issue affects the function get_es_data_by_http of the file backend/apps/db/es_engine.py of the component Elasticsearch Handler. This manipulation of the argument address causes server-side request forgery. The attack may be initiated remotely. The exploit has been publicly disclosed a
nvd