CVE-2025-69285
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-21

Last updated on: 2026-02-02

Assigner: GitHub, Inc.

Description
SQLBot is an intelligent data query system based on a large language model and RAG. Versions prior to 1.5.0 contain a missing authentication vulnerability in the /api/v1/datasource/uploadExcel endpoint, allowing a remote unauthenticated attacker to upload arbitrary Excel/CSV files and inject data directly into the PostgreSQL database. The endpoint is explicitly added to the authentication whitelist, causing the TokenMiddleware to bypass all token validation. Uploaded files are parsed by pandas and inserted into the database via to_sql() with if_exists='replace' mode. The vulnerability has been fixed in v1.5.0. No known workarounds are available.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-21
Last Modified
2026-02-02
Generated
2026-06-16
AI Q&A
2026-01-21
EPSS Evaluated
2026-06-14
NVD
CVE-2025-69285
EUVD
EUVD-2025-206314
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
fit2cloud sqlbot to 1.5.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-306 The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-69285 is a vulnerability in SQLBot versions prior to 1.5.0 where the /api/v1/datasource/uploadExcel endpoint lacks proper authentication. This endpoint is whitelisted, causing the system to bypass token validation, allowing remote attackers to upload arbitrary Excel or CSV files without authentication. These files are then parsed and inserted directly into the PostgreSQL database, replacing existing tables. This enables attackers to inject arbitrary data, potentially poisoning the database and AI components relying on it. [1]

Impact Analysis

The vulnerability allows remote unauthenticated attackers to upload arbitrary files that overwrite database tables, leading to database pollution, potential stored cross-site scripting (XSS) attacks, poisoning of AI or large language model components that depend on the database, and disk exhaustion since uploaded files are not deleted. This can compromise data integrity and system stability. [1]

Detection Guidance

You can detect this vulnerability by attempting an unauthenticated POST request to the /api/v1/datasource/uploadExcel endpoint to see if arbitrary Excel or CSV files can be uploaded without authentication. For example, using curl, you can run a command similar to: curl -X POST -F '[email protected]' http://<target-host>/api/v1/datasource/uploadExcel and check if you receive an HTTP 200 response indicating the file upload and table creation succeeded. This confirms the presence of the vulnerability. [1]

Mitigation Strategies

The immediate mitigation step is to upgrade SQLBot to version 1.5.0 or later, where this vulnerability has been fixed. No known workarounds are available, so applying the official patch by upgrading is the recommended action. [1, 2]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-69285. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart