Arbitrary File Write by Prompt Injection via DuckDB SQL in vanna-ai/vanna

Vanna v0.3.4 is vulnerable to SQL injection in its DuckDB integration exposed to its Flask Web APIs. Attackers can inject malicious SQL training data and generate corresponding queries to write arbitrary files on the victim's file system, such as backdoor.php with contents `<?php system($_GET[0]); ?>`. This can lead to command execution or the creation of backdoors.

N/A

SQL命令中使用的特殊元素转义处理不恰当(SQL注入)

Vanna 代码问题漏洞

Vanna是Vanna公司的一个个性化 AI SQL 代理。 Vanna v0.3.4版本存在代码问题漏洞，该漏洞源于容易受到SQL注入攻击，攻击者可以注入恶意SQL训练数据并生成相应的查询以在受害者的文件系统上写入任意文件。

N/A

N/A