{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-23696", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2026-01-14T22:02:15.209Z", "datePublished": "2026-04-07T16:50:53.231Z", "dateUpdated": "2026-04-08T03:55:43.162Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-04-07T16:54:36.983Z"}, "title": "Windmill < 1.603.3 File Ownership Handling SQLi RCE", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-89", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')", "type": "CWE"}]}], "affected": [{"vendor": "Windmill Labs", "product": "Windmill CE (Community Edition)", "repo": "https://github.com/windmill-labs/windmill", "versions": [{"status": "affected", "version": "1.276.0", "lessThanOrEqual": "1.603.2", "versionType": "semver"}, {"status": "unaffected", "version": "1.603.3"}], "defaultStatus": "unaffected"}, {"vendor": "Windmill Labs", "product": "Windmill EE (Enterprise Edition)", "repo": "https://github.com/windmill-labs/windmill", "versions": [{"status": "affected", "version": "1.276.0", "lessThanOrEqual": "1.603.2", "versionType": "semver"}, {"status": "unaffected", "version": "1.603.3"}], "defaultStatus": "unaffected"}, {"vendor": "Nextcloud", "product": "Flow", "repo": "https://github.com/nextcloud/flow", "versions": [{"status": "affected", "version": "1.0.0", "lessThanOrEqual": "1.2.2", "versionType": "semver"}, {"status": "unaffected", "version": "1.3.0"}, {"status": "unaffected", "version": "1.3.1"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "Windmill CE and EE versions 1.276.0 through 1.603.2 contain an SQL injection vulnerability in the folder ownership management functionality that allows authenticated attackers to inject SQL through the owner parameter. An attacker can use the injection to read sensitive data such as the JWT signing secret and administrative user identifiers, forge an administrative token, and then execute arbitrary code via the workflow execution endpoints.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Windmill CE and EE versions 1.276.0 through 1.603.2 contain an SQL injection vulnerability in the folder ownership management functionality that allows authenticated attackers to inject SQL through the owner parameter. An attacker can use the injection to read sensitive data such as the JWT signing secret and administrative user identifiers, forge an administrative token, and then execute arbitrary code via the workflow execution endpoints."}]}], "references": [{"url": "https://chocapikk.com/posts/2026/windfall-nextcloud-flow-windmill-rce/", "tags": ["technical-description", "exploit"]}, {"url": "https://github.com/Chocapikk/Windfall", "tags": ["exploit"]}, {"url": "https://github.com/windmill-labs/windmill/releases/tag/v1.603.3", "tags": ["release-notes"]}, {"url": "https://github.com/windmill-labs/windmill/commit/942fb629210ebb287f48467d1535ffde3a3eeafe", "tags": ["patch"]}, {"url": "https://www.windmill.dev/", "tags": ["product"]}, {"url": "https://apps.nextcloud.com/apps/flow/releases", "tags": ["release-notes"]}, {"url": "https://www.vulncheck.com/advisories/windmill-file-ownership-handling-sqli-rce", "tags": ["third-party-advisory"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "subConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "subIntegrityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "subAvailabilityImpact": "HIGH", "exploitMaturity": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "version": "4.0", "baseSeverity": "CRITICAL", "baseScore": 9.4, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H"}}, {"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseSeverity": "CRITICAL", "baseScore": 9.9, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}}], "credits": [{"lang": "en", "value": "Valentin Lobstein (Chocapikk)", "type": "finder"}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-07T00:00:00+00:00", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3", "id": "CVE-2026-23696"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-08T03:55:43.162Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-23696", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-07T18:05:12.929496Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-07T18:06:28.119Z"}}], "cna": {"title": "Windmill < 1.603.3 File Ownership Handling SQLi RCE", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Valentin Lobstein (Chocapikk)"}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 9.4, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "subIntegrityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.9, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"repo": "https://github.com/windmill-labs/windmill", "vendor": "Windmill Labs", "product": "Windmill CE (Community Edition)", "versions": [{"status": "affected", "version": "1.276.0", "versionType": "semver", "lessThanOrEqual": "1.603.2"}, {"status": "unaffected", "version": "1.603.3"}], "defaultStatus": "unaffected"}, {"repo": "https://github.com/windmill-labs/windmill", "vendor": "Windmill Labs", "product": "Windmill EE (Enterprise Edition)", "versions": [{"status": "affected", "version": "1.276.0", "versionType": "semver", "lessThanOrEqual": "1.603.2"}, {"status": "unaffected", "version": "1.603.3"}], "defaultStatus": "unaffected"}, {"repo": "https://github.com/nextcloud/flow", "vendor": "Nextcloud", "product": "Flow", "versions": [{"status": "affected", "version": "1.0.0", "versionType": "semver", "lessThanOrEqual": "1.2.2"}, {"status": "unaffected", "version": "1.3.0"}, {"status": "unaffected", "version": "1.3.1"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://chocapikk.com/posts/2026/windfall-nextcloud-flow-windmill-rce/", "tags": ["technical-description", "exploit"]}, {"url": "https://github.com/Chocapikk/Windfall", "tags": ["exploit"]}, {"url": "https://github.com/windmill-labs/windmill/releases/tag/v1.603.3", "tags": ["release-notes"]}, {"url": "https://github.com/windmill-labs/windmill/commit/942fb629210ebb287f48467d1535ffde3a3eeafe", "tags": ["patch"]}, {"url": "https://www.windmill.dev/", "tags": ["product"]}, {"url": "https://apps.nextcloud.com/apps/flow/releases", "tags": ["release-notes"]}, {"url": "https://www.vulncheck.com/advisories/windmill-file-ownership-handling-sqli-rce", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "Vulnogram 0.5.0"}, "descriptions": [{"lang": "en", "value": "Windmill CE and EE versions 1.276.0 through 1.603.2 contain an SQL injection vulnerability in the folder ownership management functionality that allows authenticated attackers to inject SQL through the owner parameter. An attacker can use the injection to read sensitive data such as the JWT signing secret and administrative user identifiers, forge an administrative token, and then execute arbitrary code via the workflow execution endpoints.", "supportingMedia": [{"type": "text/html", "value": "Windmill CE and EE versions 1.276.0 through 1.603.2 contain an SQL injection vulnerability in the folder ownership management functionality that allows authenticated attackers to inject SQL through the owner parameter. An attacker can use the injection to read sensitive data such as the JWT signing secret and administrative user identifiers, forge an administrative token, and then execute arbitrary code via the workflow execution endpoints.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-89", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-04-07T16:54:36.983Z"}}}, "cveMetadata": {"cveId": "CVE-2026-23696", "state": "PUBLISHED", "dateUpdated": "2026-04-08T03:55:43.162Z", "dateReserved": "2026-01-14T22:02:15.209Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2026-04-07T16:50:53.231Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Windmill CE and EE versions 1.276.0 through 1.603.2 contain an SQL injection vulnerability in the folder ownership management functionality that allows authenticated attackers to inject SQL through the owner parameter. An attacker can use the injection to read sensitive data such as the JWT signing secret and administrative user identifiers, forge an administrative token, and then execute arbitrary code via the workflow execution endpoints."}], "id": "CVE-2026-23696", "lastModified": "2026-04-08T21:27:00.663", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.9, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 6.0, "source": "disclosure@vulncheck.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 9.4, "baseSeverity": "CRITICAL", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "HIGH", "subConfidentialityImpact": "HIGH", "subIntegrityImpact": "HIGH", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "disclosure@vulncheck.com", "type": "Secondary"}]}, "published": "2026-04-07T17:16:27.247", "references": [{"source": "disclosure@vulncheck.com", "url": "https://apps.nextcloud.com/apps/flow/releases"}, {"source": "disclosure@vulncheck.com", "url": "https://chocapikk.com/posts/2026/windfall-nextcloud-flow-windmill-rce/"}, {"source": "disclosure@vulncheck.com", "url": "https://github.com/Chocapikk/Windfall"}, {"source": "disclosure@vulncheck.com", "url": "https://github.com/windmill-labs/windmill/commit/942fb629210ebb287f48467d1535ffde3a3eeafe"}, {"source": "disclosure@vulncheck.com", "url": "https://github.com/windmill-labs/windmill/releases/tag/v1.603.3"}, {"source": "disclosure@vulncheck.com", "url": "https://www.vulncheck.com/advisories/windmill-file-ownership-handling-sqli-rce"}, {"source": "disclosure@vulncheck.com", "url": "https://www.windmill.dev/"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-89"}], "source": "disclosure@vulncheck.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[1.0.0,1.2.2]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "1.3.0"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "1.3.1"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Flow", "source": "cna", "vendor": "Nextcloud"}, "product": "flow", "vendor": "nextcloud"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[1.276.0,1.603.2]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "1.603.3"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Windmill CE (Community Edition)", "source": "cna", "vendor": "Windmill Labs"}, "product": "windmil", "vendor": "windmill-labs"}], "analysis": {"en": {"generated_at": "2026-04-07T22:44:15.098301+00:00", "value": {"mitigation_remediation": ["Upgrade Windmill CE or EE to version 1.603.3 or later."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "Windmill CE and EE releases between version 1.276.0 and 1.603.2 contain the vulnerability; the issue is fixed in release 1.603.3. The CNA lists Nextcloud Flow as a vendor, but the description indicates the weakness exists only in Windmill itself, and there is no explicit evidence that Nextcloud Flow is affected. If your environment runs Windmill from the affected range, the flaw applies.", "description_and_impact": "An SQL injection flaw in the folder ownership management of Windmill Community and Enterprise Editions allows an authenticated user to inject arbitrary SQL via the owner parameter. The injection can reveal secrets such as the JWT signing key and admin identifiers, enabling the attacker to forge administrative tokens and execute arbitrary code through workflow execution endpoints, giving full control over the system.", "risk_and_exploitability": "The CVSS base score of 9.4 classifies the issue as critical. EPSS data is not provided and the vulnerability is not catalogued in CISA's KEV list. Attackers only need legitimate credentials to the Windmill instance to exploit the flaw. Once the SQL injection succeeds, the attacker may read sensitive information, craft a forged token, and invoke workflow endpoints to run arbitrary code, compromising confidentiality, integrity, and availability."}}}}, "created": "2026-04-08T19:36:34.933225+00:00", "updated": "2026-04-08T19:47:38.060225+00:00", "vendors": ["nextcloud", "nextcloud$PRODUCT$flow", "windmill-labs", "windmill-labs$PRODUCT$windmil"]}