CVE-2026-42271: BerriAI LiteLLM SQL injection
CVE-2026-42271 is verified against BerriAI LiteLLM · pip affected versions: pip litellm >= 1.81.16, < 1.83.7 (also reported as v1.81.16 through v1.83.6) vulnerability class: SQLi This critical reproduction includes runnable sandbox proof, artifacts, and a plain-text agent view under REPRO-2026-00261.
pruva-verify REPRO-2026-00261 curl -O https://pruva.dev/api/v1/reproductions/REPRO-2026-00261/artifacts/bundle/repro/reproduction_steps.sh && chmod +x reproduction_steps.sh && ./reproduction_steps.sh BerriAI LiteLLM is affected by an unauthenticated SQL injection vulnerability. The API endpoint(s) processing proxy or admin requests construct raw SQL queries using attacker-controllable parameters without sufficient parameterization. A remote attacker can send a crafted request to extract or modify the LiteLLM database contents, leading to complete compromise of the API gateway configuration, keys, and logs. CISA KEV indicates active exploitation. Affected versions: LiteLLM proxy/admin API before the patch. Need to reproduce against a vulnerable install (e.g., pip install litellm) and demonstrate SQL injection through a network request. Patch should be identified from upstream commit/PR.
Variant analysis
The agent's step-by-step process — every tool call, every handoff, the moment the exploit fired. Phases: support triages the advisory · repro reproduces it · vuln_variant confirms the fix blocks it · judge verifies.
Loading session...
Scripts, logs, diffs, and output captured during the reproduction.