CVE-2026-41641 Scanner
CVE-2026-41641 Scanner - SQL Injection vulnerability in NocoBase
Short Info
Level
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
17 days 17 hours
Scan only one
Domain, Subdomain, IPv4
Toolbox
NocoBase is a low-code development platform that allows users to create custom applications by configuring data models, business processes, and user interfaces. It is widely used by developers and businesses to build applications quickly without requiring extensive coding knowledge. NocoBase is particularly popular among small to medium-sized enterprises for its flexibility and customizability in application development. The platform supports various plugins to enhance its functionality, making it a versatile tool in software development.
The SQL Injection vulnerability detected in NocoBase allows attackers to execute arbitrary SQL code on the database. This type of vulnerability occurs when user input is improperly sanitized, allowing malicious SQL queries to manipulate the database. The vulnerability exists in the sqlCollection:update endpoint, which does not invoke the checkSQL() function, leading to unchecked SQL statements. Consequently, attackers can perform unauthorized actions such as retrieving or modifying sensitive data.
The vulnerability arises in the sqlCollection:update endpoint, where the SQL code execution is not properly restricted. The absence of the checkSQL() function allows harmful SQL keywords that would otherwise be blocked. As a result, attackers can inject SQL commands that can expose user data. The parameters passed within the collection updates are particularly vulnerable, as they bypass standard SQL checks during execution.
Exploiting this SQL Injection vulnerability can lead to severe data breaches. Attackers may retrieve sensitive information such as usernames, email addresses, and passwords from the database. The unauthorized access and potential modification of database entries can compromise the integrity of the application and the confidentiality of user information. In severe cases, the exploitation could result in complete database control by malicious actors.
REFERENCES
