{"data":{"id":"dc12d151-22c3-4746-8008-f599d62d6d59","title":"GHSA-2mfg-cc43-9pcj: LangChain4j: SQL injection via metadata filters in langchain4j-mariadb and langchain4j-pgvector","summary":"LangChain4j's MariaDB and pgvector embedding stores have a SQL injection vulnerability (a type of attack where an attacker inserts malicious SQL code into a query) caused by improperly escaping metadata filter keys before putting them into SQL queries. An attacker who can control the filter keys in search or remove operations could inject arbitrary SQL to steal data, cause denial of service, or delete rows from the database.","solution":"Fixed in langchain4j-mariadb and langchain4j-pgvector version 1.16.3-beta26. The patch properly escapes JSON filter keys before embedding them in SQL string literals (doubling single quotes for PostgreSQL and escaping backslash and single quote for MariaDB), escapes backslash and single quote in MariaDB string values, and validates or quotes column-mode keys as identifiers instead of concatenating them as raw SQL.","labels":["security"],"sourceUrl":"https://github.com/advisories/GHSA-2mfg-cc43-9pcj","publishedAt":"2026-06-17T18:39:56.000Z","cveId":"CVE-2026-55405","cweIds":null,"cvssScore":null,"cvssSeverity":"high","severity":"high","attackType":[],"issueType":"vulnerability","affectedPackages":["dev.langchain4j:langchain4j-pgvector@>= 1.12.1-beta21, <= 1.16.2-beta26 (fixed: 1.16.3-beta26)","dev.langchain4j:langchain4j-pgvector@>= 1.6.0-beta12, <= 1.11.7-beta19 (fixed: 1.11.8-beta19)","dev.langchain4j:langchain4j-pgvector@>= 1.3.0-beta9, <= 1.5.0-beta11 (fixed: 1.5.1-beta11)","dev.langchain4j:langchain4j-pgvector@<= 1.2.0-beta8 (fixed: 1.2.1-beta8)","dev.langchain4j:langchain4j-mariadb@>= 1.12.1-beta21, <= 1.16.2-beta26 (fixed: 1.16.3-beta26)"],"affectedVendors":["LangChain"],"affectedVendorsRaw":["LangChain4j"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0,"patchAvailable":true,"disclosureDate":"2026-06-17T18:39:56.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["confidentiality","integrity","availability"],"aiComponentTargeted":"rag","llmSpecific":false,"classifierConfidence":0.95,"researchCategory":null,"atlasIds":null}}