CVE-2018-20469

CRITICAL

Sahi Pro < 8.0.0 - SQL Injection via Web Reports Module Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-20469. PoCs published by Goutham Madhwaraj.

AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in Sahi Pro (versions <= 8.x) via the 'sql' parameter in the DBReports module. The PoC injects an H2 database function (memory_used()) to disclose sensitive information without requiring authentication.

Description

An issue was discovered in Tyto Sahi Pro through 7.x.x and 8.0.0. A parameter in the web reports module is vulnerable to h2 SQL injection. This can be exploited to inject SQL queries and run standard h2 system functions.

Exploits (1)

exploitdb WORKING POC
by Goutham Madhwaraj · textwebappsmultiple
https://www.exploit-db.com/exploits/47006

This exploit demonstrates a SQL injection vulnerability in Sahi Pro (versions <= 8.x) via the 'sql' parameter in the DBReports module. The PoC injects an H2 database function (memory_used()) to disclose sensitive information without requiring authentication.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Sahi Pro <= 8.x
No auth needed
Prerequisites: Network access to the Sahi Pro server · Exposed DBReports endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
https://barriersec.com/2019/06/cve-2018-20469-sahi-pro/
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/153331/Sahi-Pro-8.x-SQL-Injection.html

Scores

CVSS v3 9.8
EPSS 0.1854
EPSS Percentile 96.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-89
Status published
Products (1)
sahipro/sahi_pro < 8.0.0
Published Jun 17, 2019
Tracked Since Feb 18, 2026