CVE-2026-30273

Received Received - Intake

SQL Injection in pandas-ai _execute_sql_query Component

Publication date: 2026-04-01

Last updated on: 2026-04-06

Assigner: MITRE

Description

pandas-ai v3.0.0 was discovered to contain a SQL injection vulnerability via the pandasai.agent.base._execute_sql_query component.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-04-01

Last Modified

2026-04-06

Generated

2026-06-16

AI Q&A

2026-04-01

EPSS Evaluated

2026-06-15

NVD

CVE-2026-30273

EUVD

EUVD-2026-17959

Affected Vendors & Products

Vendor	Product	Version / Range
gabrieleventuri	pandasai	to 3.0.0 (inc)

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-89	The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

CWE ID

Description

CWE-89

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Attack-Flow Graph

Detection Guidance

This vulnerability is a SQL injection in pandas-ai v3.0.0 via the pandasai.agent.base._execute_sql_query component. Detection involves monitoring for unusual or unauthorized SQL query patterns that may indicate injection attempts.

You can detect potential exploitation by reviewing logs for suspicious SQL queries or unexpected database access patterns.

Specific commands to detect this vulnerability are not provided in the available resources.

Compliance Impact

The provided information does not specify how the SQL injection vulnerability in pandas-ai v3.0.0 impacts compliance with common standards and regulations such as GDPR or HIPAA.

Impact Analysis

This vulnerability can allow an attacker to perform SQL injection attacks, potentially leading to unauthorized access to sensitive data stored in the database. Specifically, an attacker could read arbitrary files from the database server, which may result in data breaches, exposure of confidential information, and compromise of system integrity.

Mitigation Strategies

Immediate mitigation steps include avoiding use of pandas-ai version 3.0.0 or earlier until a patch or update is available.

Restrict access to the affected component and validate or sanitize all user inputs to prevent SQL injection.

Monitor your systems for signs of exploitation and apply any official patches or updates once released.

Executive Summary

CVE-2026-30273 is a SQL injection vulnerability found in pandas-ai version 3.0.0 and earlier. It occurs in the pandasai.agent.base._execute_sql_query component, where user input is improperly handled in SQL queries. This flaw allows an attacker to inject crafted input into the prompt, which can lead to unauthorized reading of arbitrary files from the database server.

Hi! I’m here to help you understand CVE-2026-30273. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2026-30273

SQL Injection in pandas-ai _execute_sql_query Component

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart