6.5

CVSS Score

3.1

-

CVSS Score

Basic Information

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2026-34825

CVE-2026-34825: NocoBase Has SQL Injection via template variable substitution in workflow SQL node

Summary

NocoBase <= 2.0.8 plugin-workflow-sql substitutes template variables directly into raw SQL strings via getParsedValue() without parameterization or escaping. Any user who triggers a workflow containing a SQL node with template variables from user-controlled data can inject arbitrary SQL.

Affected Versions

Affected: all versions through 2.0.8

Details

The SQLInstruction in packages/plugins/@nocobase/plugin-workflow-sql/src/server/SQLInstruction.ts line 28 processes SQL templates:

// SQLInstruction.ts:28
const sql = processor.getParsedValue(node.config.sql || '', node.id).trim();

Then executes the resulting string directly:

// SQLInstruction.ts:35
const [result] = await collectionManager.db.sequelize.query(sql, {
  transaction: this.workflow.useDataSourceTransaction(dataSourceName, processor.transaction),
});

getParsedValue() performs simple string substitution of {{$context.data.fieldName}} placeholders with values from the workflow trigger data. No escaping, quoting, or parameterized binding is applied.

When an admin creates a SQL node with a template like:

SELECT * FROM users WHERE nickname = '{{$context.data.nickname}}'

Any user who triggers the workflow with a crafted value can break out of the string literal and inject arbitrary SQL.

Proof of Concept

Login as admin
Create a collection-trigger workflow on the users table (mode: after create)
Add a SQL node with:

SELECT id, nickname, email FROM users WHERE nickname = '{{$context.data.nickname}}'

Enable the workflow
Create a user with nickname set to: ' UNION SELECT 1,version(),current_user --
Check execution result:

[
  {
    "id": 1,
    "nickname": "PostgreSQL 16.13 (Debian 16.13-1.pgdg13+1) on x86_64-pc-linux-gnu...",
    "email": "nocobase"
  }
]

The injected UNION SELECT returned the database version and current database user.

Impact

Full database read/write access through SQL injection. An attacker who can trigger a workflow with a SQL node containing template variables from user-controlled data can extract credentials, modify records, or drop tables. The severity depends on the database user's privileges (full superuser access in the default Docker deployment).

Suggested Fix

Use parameterized queries. Replace direct string substitution with Sequelize bind parameters:

// SQLInstruction.ts
- const sql = processor.getParsedValue(node.config.sql || '', node.id).trim();
+ const { sql, bind } = processor.getParsedValueAsParams(node.config.sql || '', node.id);
  const [result] = await collectionManager.db.sequelize.query(sql, {
+   bind,
    transaction: ...
  });

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2026-34825

CVE-2026-34825:

6.5

CVSS Score

3.1

-

CVSS Score

Basic Information

Is this CVE running in your environment?

Easily map the attack path and prioritize which CVEs are a threat to your organization

Validate Exposure

Technical Details

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
@nocobase/plugin-workflow-sql	npm	<= 2.0.29	2.0.30

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability is a classic SQL injection located in the @nocobase/plugin-workflow-sql package. The core of the issue lies within the SQLInstruction class in packages/plugins/@nocobase/plugin-workflow-sql/src/server/SQLInstruction.ts. The analysis of the provided patch commit 75da3dddc4aba739c398f7072725dcf7f5487f5c confirms that the execute method was constructing raw SQL queries by directly embedding user-controllable data from workflow template variables ({{...}}) into the query string using processor.getParsedValue(). This concatenated string was then passed to sequelize.query() for execution, creating a clear path for SQL injection.

The patch addresses this by implementing parameterized queries. It introduces a new variables array in the node configuration and uses the replacements option in Sequelize to safely bind values. A new boolean flag, unsafeInjection, has been added. When false (the new default), queries are parameterized and safe. When true, the old, vulnerable string substitution logic is used to maintain backward compatibility for existing workflows. A database migration script included in the patch automatically sets unsafeInjection: true on all existing SQL nodes that use template variables. The SQLInstruction.test method was also patched as it had a similar vulnerability. Therefore, any runtime profile during exploitation would point to the SQLInstruction.execute method as the primary vulnerable function.

Vulnerable functions

SQLInstruction.execute

packages/plugins/@nocobase/plugin-workflow-sql/src/server/SQLInstruction.ts

The 'execute' method in the 'SQLInstruction' class was vulnerable to SQL injection. It used `processor.getParsedValue()` to substitute template variables directly into the SQL query string. This string was then executed without any parameterization, allowing attackers to inject arbitrary SQL by providing malicious values in the workflow context data. The patch introduced a safe mode using parameterized queries (`replacements`), while the old, vulnerable behavior is kept behind an `unsafeInjection` flag for backward compatibility.

SQLInstruction.test

packages/plugins/@nocobase/plugin-workflow-sql/src/server/SQLInstruction.ts

The 'test' method was also vulnerable as it executed a raw SQL query provided in its arguments. If this SQL contained template variables from user input, it could lead to SQL injection. The patch refactored this method to also use parameterized queries by default, similar to the `execute` method, making it safe from injection unless the `unsafeInjection` flag is explicitly true.

Vulnerability Intelligence
Miggo AI

Unlock WAF rules for this CVE

Generate vendor-ready rules for the observed attack patterns, plus reasoning and safe deployment guidance

Get WAF rules

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

6.5

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2026-34825: NocoBase Has SQL Injection via template variable substitution in workflow SQL node

Summary

Affected Versions

Details

Proof of Concept

Impact

Suggested Fix

CVE-2026-34825:

6.5

-

Basic Information

Basic Information

Is this CVE running in your environment?

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

Vulnerability IntelligenceMiggo AI

Unlock WAF rules for this CVE

WAF Protection Rules

WAF Rule

Reasoning

Technical Details

6.5

6.5

Basic Information

Basic Information

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

CVE-2026-34825: NocoBase Has SQL Injection via template variable substitution in workflow SQL node

Summary

Affected Versions

Details

Proof of Concept

Impact

Suggested Fix

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI