{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-33643", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-03-30T19:32:16.909Z", "dateReserved": "2026-03-23T00:00:00.000Z", "datePublished": "2026-03-30T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-30T15:56:38.752Z"}, "descriptions": [{"lang": "en", "value": "SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the mysqlColumnAsInsert function in file plugins/mysql/lib/column.go."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://gist.github.com/b0b0haha/fb59199fb1fdf9414e76442e0599bfed"}, {"url": "https://github.com/b0b0haha/SchemaHero--Sqlinjection/blob/main/README.md"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-89", "lang": "en", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')"}]}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.4, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-03-30T19:31:39.624573Z", "id": "CVE-2026-33643", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-30T19:32:16.909Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.4, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-33643", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-30T19:31:39.624573Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-89", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-30T19:25:45.863Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://gist.github.com/b0b0haha/fb59199fb1fdf9414e76442e0599bfed"}, {"url": "https://github.com/b0b0haha/SchemaHero--Sqlinjection/blob/main/README.md"}], "descriptions": [{"lang": "en", "value": "SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the mysqlColumnAsInsert function in file plugins/mysql/lib/column.go."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-30T15:56:38.752Z"}}}, "cveMetadata": {"cveId": "CVE-2026-33643", "state": "PUBLISHED", "dateUpdated": "2026-03-30T19:32:16.909Z", "dateReserved": "2026-03-23T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-03-30T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:schemahero:schemahero:*:*:*:*:*:*:*:*", "matchCriteriaId": "66D6AE8B-3D4C-4AB1-9176-EA0DEF149589", "versionEndIncluding": "0.23.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the mysqlColumnAsInsert function in file plugins/mysql/lib/column.go."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n SQL en SchemaHero 0.23.0 a trav\u00e9s del par\u00e1metro column a la funci\u00f3n mysqlColumnAsInsert en el archivo plugins/mysql/lib/column.go."}], "id": "CVE-2026-33643", "lastModified": "2026-04-02T20:00:48.393", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 3.7, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-30T16:16:06.880", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Mitigation", "Third Party Advisory"], "url": "https://gist.github.com/b0b0haha/fb59199fb1fdf9414e76442e0599bfed"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Mitigation", "Third Party Advisory"], "url": "https://github.com/b0b0haha/SchemaHero--Sqlinjection/blob/main/README.md"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-89"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "0.23.0"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "schemahero", "vendor": "schemahero"}], "analysis": {"en": {"generated_at": "2026-04-02T23:06:46.143844+00:00", "value": {"mitigation_remediation": ["Upgrade SchemaHero to a version newer than 0.23.0 that addresses the mysqlColumnAsInsert injection flaw", "If an upgrade is not immediately possible, restrict external access to the SchemaHero API or disable any components that invoke mysqlColumnAsInsert until the patch is applied", "Verify that the patched version is running in production and monitor logs for unexpected SQL execution attempts"], "summary": {"action": "Immediate Patch", "impact": "SQL injection leading to data compromise"}, "threat_synthesis": {"affected_systems": "The only known affected build is SchemaHero version 0.23.0. Earlier or later releases are not listed as vulnerable.", "description_and_impact": "SchemaHero 0.23.0 contains an unchecked inclusion of the column parameter in the mysqlColumnAsInsert function, allowing an attacker to inject arbitrary SQL. This flaw could enable unauthorized reading, modification, or deletion of database contents, representing a classic code injection vulnerability classified as CWE\u201189.", "risk_and_exploitability": "The CVSS score of 7.4 denotes high impact, while an EPSS score below 1% indicates a low current likelihood of exploitation. The vulnerability is not present in the CISA KEV catalog. Attackers could exploit this flaw remotely if they can supply input to the column argument, such as through API calls or configuration files that invoke mysqlColumnAsInsert, potentially granting full data compromise when sufficient privileges exist."}}}}, "created": "2026-03-30T20:56:20.449033+00:00", "updated": "2026-04-03T09:38:22.029157+00:00", "vendors": ["schemahero", "schemahero$PRODUCT$schemahero"]}