Fix SQL injection in SQL Agent plugin via parameterized queries

Replace string concatenation with parameterized queries in all database connectors to prevent SQL injection through LLM-generated table names. Changes: - PostgreSQL: Use $1, $2 placeholders with pg client parameterization - MySQL: Use ? placeholders with mysql2 execute() prepared statements - MSSQL: Use @p0 placeholders with request.input() parameterization - Update handlers to support parameterized query objects - Add formatQueryForDisplay() for logging parameterized queries Security: Mitigates potential SQL injection when LLM passes unsanitized user input as table_name parameter to getTableSchemaSql/getTablesSql. GHSA-jwjx-mw2p-5wc7
2026-04-26 01:25:15 +02:00 · 2026-03-12 21:56:57 -07:00
parent 9e2d144dc8
commit 334ce052f0
5 changed files with 81 additions and 17 deletions
--- a/server/utils/agents/aibitat/plugins/sql-agent/SQLConnectors/Postgresql.js
+++ b/server/utils/agents/aibitat/plugins/sql-agent/SQLConnectors/Postgresql.js
@@ -25,13 +25,14 @@ class PostgresSQLConnector {
  /**
   *
   * @param {string} queryString the SQL query to be run
+   * @param {Array} params optional parameters for prepared statement
   * @returns {Promise<import(".").QueryResult>}
   */
-  async runQuery(queryString = "") {
+  async runQuery(queryString = "", params = []) {
    const result = { rows: [], count: 0, error: null };
    try {
      if (!this.#connected) await this.connect();
-      const query = await this._client.query(queryString);
+      const query = await this._client.query(queryString, params);
      result.rows = query.rows;
      result.count = query.rowCount;
    } catch (err) {
@@ -57,10 +58,17 @@ class PostgresSQLConnector {
  }

  getTablesSql() {
-    return `SELECT * FROM pg_catalog.pg_tables WHERE schemaname = '${this.schema}'`;
+    return {
+      query: `SELECT * FROM pg_catalog.pg_tables WHERE schemaname = $1`,
+      params: [this.schema],
+    };
  }
+
  getTableSchemaSql(table_name) {
-    return ` select column_name, data_type, character_maximum_length, column_default, is_nullable from INFORMATION_SCHEMA.COLUMNS where table_name = '${table_name}' AND table_schema = '${this.schema}'`;
+    return {
+      query: `SELECT column_name, data_type, character_maximum_length, column_default, is_nullable FROM INFORMATION_SCHEMA.COLUMNS WHERE table_name = $1 AND table_schema = $2`,
+      params: [table_name, this.schema],
+    };
  }
 }