Volerion logoVolerion
Volerion logoVolerion

OpenMetadata SQL Injection Vulnerability in WorkflowDAO Interface

Vulnerability

A SQL injection vulnerability has been identified in OpenMetadata versions through 1.4.1. The issue arises in the WorkflowDAO interface, specifically within the listCount function, where the workflowtype and status parameters are used to construct SQL queries. This vulnerability allows attackers to extract information from the database.

Impact

Exploitation of this vulnerability allows attackers to execute arbitrary SQL commands, potentially leading to unauthorized data access, data manipulation, or in some cases, executing administrative commands on the database server.

Reproduction

To reproduce this vulnerability, send a GET request to the OpenMetadata API endpoint '/api/v1/automations/workflows' with crafted 'workflowType' and 'status' parameters that include SQL injection payloads. The injected SQL can be used to extract data from the database, such as table names or sensitive user information, depending on the injection technique used.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
0.8
impact
2.5
exploitability
6.6
remediation
0.0
relevance
0.0
threat
6.4
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.