High severity8.6NVD Advisory· Published Jan 30, 2026· Updated Apr 21, 2026
CVE-2025-69662
CVE-2025-69662
Description
SQL injection vulnerability in geopandas before v.1.1.2 allows an attacker to obtain sensitive information via the to_postgis()` function being used to write GeoDataFrames to a PostgreSQL database.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
SQL injection in GeoPandas to_postgis() allows attackers to extract sensitive data via crafted geometry column names.
Vulnerability
Overview
CVE-2025-69662 is a SQL injection vulnerability in the GeoPandas library (versions before 1.1.2) that affects the to_postgis() function. The root cause is the direct concatenation of user-controlled geometry column names into SQL queries without proper sanitization or parameterization. Specifically, in geopandas/io/sql.py, the , the Find_SRID query interpolates the geom_name` variable directly into an f-string, allowing an attacker to inject arbitrary SQL code [1][2].
Exploitation
Details
The attack vector leverages the rename_geometry() method, which allows a user-supplied data can control. When to_postgis() is called with if_exists='append', the vulnerable code path executes a query that includes the geometry column name. An attacker can be crafted to break out of the string literal and execute malicious SQL statements. No authentication is required beyond access to the GeoPandas function, and the attack can be performed remotely if the application accepts user-provided geometry column names [2][3].
Impact
Impact
Successful exploitation allows an attacker to perform classic SQL injection attacks, including extracting sensitive information from the database, modifying or deleting data, and potentially executing system commands via PostgreSQL features like the COPY command. The CVSS v3 score of 8.6 (High) reflects the potential for significant confidentiality, integrity, and availability impacts [2].
Mitigation
The vulnerability is fixed in GeoPandas version 1.1.2. The fix introduces UUID-based temporary column names to prevent injection and uses parameterized queries for the Find_SRID call. Users should upgrade to the latest version immediately. No workaround is available for earlier versions [1][4].
References
- Fix SQL injection in to_postgis via geometry column name (#3681) · geopandas/geopandas@6aa8ef1
- SQL Injection Vulnerability: Security Issue in GeoPandas to_postgis() Function | Yunus Aydın Blog
- SQL Injection Vulnerability: Security Issue in GeoPandas to_postgis() Function | Yunus Aydın Blog
- GitHub - geopandas/geopandas: Python tools for geographic data
AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
geopandasPyPI | < 1.1.2 | 1.1.2 |
Affected products
2Patches
16aa8ef14ffdeFix SQL injection in to_postgis via geometry column name (#3681)
3 files changed · +262 −1
CHANGELOG.md+1 −0 modified@@ -26,6 +26,7 @@ Bug fixes: column (#3648). - Calling `del gdf["geometry"]` now will downcast to a `pd.DataFrame` if there are no geometry columns left in the dataframe (#3648). +- Fix SQL injection in `to_postgis` via geometry column name (#3681). Community:
geopandas/io/sql.py+5 −1 modified@@ -431,7 +431,11 @@ def _write_postgis( # Only check SRID if table exists if connection.dialect.has_table(connection, name, schema): target_srid = connection.execute( - text(f"SELECT Find_SRID('{schema_name}', '{name}', '{geom_name}');") + text( + "SELECT Find_SRID(:schema_name, :name, :geom_name);" + ).bindparams( + schema_name=schema_name, name=name, geom_name=geom_name + ) ).fetchone()[0] if target_srid != srid:
geopandas/io/tests/test_sql.py+256 −0 modified@@ -6,6 +6,7 @@ """ import os +import uuid import warnings from importlib.util import find_spec @@ -841,3 +842,258 @@ def test_read_non_epsg_crs_chunksize(self, connection_postgis, df_nybb): validate_boro_df(df) assert df.crs == "ESRI:54052" + + @pytest.mark.parametrize("engine_postgis", POSTGIS_DRIVERS, indirect=True) + def test_to_postgis_append_with_custom_geometry_column_name( + self, engine_postgis, df_nybb + ): + """ + Tests that appending works correctly with custom geometry column names. + This ensures the SQL injection fix doesn't break normal functionality. + """ + engine = engine_postgis + table = "test_custom_geom" + + # Create GeoDataFrame with custom geometry column name + gdf = df_nybb.copy() + gdf = gdf.rename_geometry("custom_geom") + + # Write initial data + write_postgis(gdf, con=engine, name=table, if_exists="replace") + + # Append more data - this should work without SQL injection vulnerability + write_postgis(gdf, con=engine, name=table, if_exists="append") + + # Verify data was appended correctly + sql = text(f'SELECT * FROM "{table}";') + df = read_postgis(sql, engine, geom_col="custom_geom") + assert len(df) == len(gdf) * 2 + + @pytest.mark.parametrize("engine_postgis", POSTGIS_DRIVERS, indirect=True) + def test_to_postgis_sql_injection_prevention_geometry_column( + self, engine_postgis, df_nybb + ): + """ + Tests that SQL injection attempts via geometry column name are prevented. + This test verifies that malicious geometry column names are treated as + literal strings and not executed as SQL code. + + This test is based on issue #3679 which reported SQL injection vulnerability + in the Find_SRID query when using to_postgis with if_exists='append'. + """ + engine = engine_postgis + table = "test_sql_injection" + + # Create a test table first to ensure append mode triggers + # the vulnerable code path + gdf_normal = df_nybb.copy() + write_postgis(gdf_normal, con=engine, name=table, if_exists="replace") + + # Create a test table that would be targeted by SQL injection + # If SQL injection works, this table would be dropped + # Use random name to avoid conflicts with existing tables + test_target_table = f"test_target_{uuid.uuid4().hex[:12]}" + with engine.begin() as conn: + conn.execute( + text(f"CREATE TABLE IF NOT EXISTS {test_target_table} (id INTEGER);") + ) + conn.execute(text(f"INSERT INTO {test_target_table} (id) VALUES (1);")) + + # Create GeoDataFrame with malicious geometry column name + # This simulates an attacker trying to inject SQL via geometry column name + gdf_malicious = df_nybb.copy() + malicious_geom_name = f"geom'; DROP TABLE {test_target_table}; --" + gdf_malicious = gdf_malicious.rename_geometry(malicious_geom_name) + + # First, verify both tables exist + sql_check = text(f"SELECT COUNT(*) FROM {table};") + sql_check_target = text(f"SELECT COUNT(*) FROM {test_target_table};") + with engine.connect() as conn: + initial_count = conn.execute(sql_check).fetchone()[0] + target_exists = conn.execute(sql_check_target).fetchone()[0] == 1 + + assert target_exists, "Target table should exist before SQL injection attempt" + + # Attempt append - this should fail because the geometry column name + # doesn't match, but it should NOT execute the injected SQL + try: + write_postgis(gdf_malicious, con=engine, name=table, if_exists="append") + # If it doesn't raise an error, that's also fine - the important + # thing is that SQL injection didn't occur + except (ValueError, Exception): + # Expected - the geometry column name doesn't exist in the table + pass + + # Verify both tables still exist and weren't dropped by SQL injection + with engine.connect() as conn: + final_count = conn.execute(sql_check).fetchone()[0] + target_still_exists = conn.execute(sql_check_target).fetchone()[0] == 1 + + assert final_count == initial_count, ( + "Test table should still exist after SQL injection attempt" + ) + assert target_still_exists, ( + f"Target table '{test_target_table}' should not be dropped by SQL injection" + ) + + @pytest.mark.parametrize("engine_postgis", POSTGIS_DRIVERS, indirect=True) + def test_to_postgis_sql_injection_prevention_geometry_column_union( + self, engine_postgis, df_nybb + ): + """ + Tests another SQL injection pattern: UNION SELECT attack + via geometry column name. + """ + engine = engine_postgis + table = "test_sql_injection_union" + + # Create initial table + gdf_normal = df_nybb.copy() + write_postgis(gdf_normal, con=engine, name=table, if_exists="replace") + + # Create a test table that would be targeted by UNION SELECT injection + # Use random name to avoid conflicts with existing tables + test_target_table = f"test_target_{uuid.uuid4().hex[:12]}" + with engine.begin() as conn: + conn.execute( + text(f"CREATE TABLE IF NOT EXISTS {test_target_table} (password TEXT);") + ) + conn.execute( + text(f"INSERT INTO {test_target_table} (password) VALUES ('secret');") + ) + + # Create GeoDataFrame with UNION-based SQL injection attempt + gdf_malicious = df_nybb.copy() + malicious_geom_name = ( + f"geom') UNION SELECT password FROM {test_target_table} WHERE '1'='1" + ) + gdf_malicious = gdf_malicious.rename_geometry(malicious_geom_name) + + # Verify tables exist before injection attempt + sql_check = text(f"SELECT COUNT(*) FROM {table};") + sql_check_target = text(f"SELECT COUNT(*) FROM {test_target_table};") + with engine.connect() as conn: + initial_count = conn.execute(sql_check).fetchone()[0] + target_exists = conn.execute(sql_check_target).fetchone()[0] == 1 + + assert target_exists, "Target table should exist before SQL injection attempt" + + # Attempt append - should not execute the UNION SELECT + try: + write_postgis(gdf_malicious, con=engine, name=table, if_exists="append") + except (ValueError, Exception): + # Expected - geometry column name mismatch + pass + + # Verify table integrity maintained + with engine.connect() as conn: + final_count = conn.execute(sql_check).fetchone()[0] + target_still_exists = conn.execute(sql_check_target).fetchone()[0] == 1 + + assert final_count == initial_count, ( + "Test table should still exist after SQL injection attempt" + ) + assert target_still_exists, ( + f"Target table '{test_target_table}' should not be " + "affected by SQL injection" + ) + + @pytest.mark.parametrize("engine_postgis", POSTGIS_DRIVERS, indirect=True) + def test_to_postgis_sql_injection_prevention_geometry_column_comment( + self, engine_postgis, df_nybb + ): + """ + Tests SQL injection via comment syntax in geometry column name. + """ + engine = engine_postgis + table = "test_sql_injection_comment" + + # Create initial table + gdf_normal = df_nybb.copy() + write_postgis(gdf_normal, con=engine, name=table, if_exists="replace") + + # Create GeoDataFrame with comment-based SQL injection + gdf_malicious = df_nybb.copy() + malicious_geom_name = "geom' -- DROP TABLE test_sql_injection_comment;" + gdf_malicious = gdf_malicious.rename_geometry(malicious_geom_name) + + # Verify table exists + sql_check = text(f"SELECT COUNT(*) FROM {table};") + with engine.connect() as conn: + initial_count = conn.execute(sql_check).fetchone()[0] + + # Attempt append + try: + write_postgis(gdf_malicious, con=engine, name=table, if_exists="append") + except (ValueError, Exception): + pass + + # Verify table still exists + with engine.connect() as conn: + final_count = conn.execute(sql_check).fetchone()[0] + assert final_count == initial_count + + @pytest.mark.parametrize("engine_postgis", POSTGIS_DRIVERS, indirect=True) + def test_to_postgis_sql_injection_prevention_geometry_column_semicolon( + self, engine_postgis, df_nybb + ): + """ + Tests SQL injection via semicolon in geometry column name. + """ + engine = engine_postgis + table = "test_sql_injection_semicolon" + + # Create initial table + gdf_normal = df_nybb.copy() + write_postgis(gdf_normal, con=engine, name=table, if_exists="replace") + + # Create GeoDataFrame with semicolon-based SQL injection + gdf_malicious = df_nybb.copy() + malicious_geom_name = "geom; DELETE FROM test_sql_injection_semicolon;" + gdf_malicious = gdf_malicious.rename_geometry(malicious_geom_name) + + # Verify table exists + sql_check = text(f"SELECT COUNT(*) FROM {table};") + with engine.connect() as conn: + initial_count = conn.execute(sql_check).fetchone()[0] + + # Attempt append + try: + write_postgis(gdf_malicious, con=engine, name=table, if_exists="append") + except (ValueError, Exception): + pass + + # Verify table still exists and data is intact + with engine.connect() as conn: + final_count = conn.execute(sql_check).fetchone()[0] + assert final_count == initial_count + + @pytest.mark.parametrize("engine_postgis", POSTGIS_DRIVERS, indirect=True) + def test_to_postgis_append_with_special_characters_in_geometry_column( + self, engine_postgis, df_nybb + ): + """ + Tests that legitimate geometry column names with special characters + (but not SQL injection) still work correctly. + This ensures the fix doesn't break normal functionality with valid + but unusual column names. + """ + engine = engine_postgis + table = "test_special_chars" + + # Create GeoDataFrame with geometry column name containing special characters + # (but not SQL injection patterns) + gdf = df_nybb.copy() + # Use a valid but unusual geometry column name + gdf = gdf.rename_geometry("geom_with_underscores_123") + + # Write initial data + write_postgis(gdf, con=engine, name=table, if_exists="replace") + + # Append more data - should work correctly + write_postgis(gdf, con=engine, name=table, if_exists="append") + + # Verify data was appended correctly + sql = text(f'SELECT * FROM "{table}";') + df = read_postgis(sql, engine, geom_col="geom_with_underscores_123") + assert len(df) == len(gdf) * 2
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
9- github.com/geopandas/geopandas/pull/3681nvdIssue TrackingPatchWEB
- aydinnyunus.github.io/2025/12/27/sql-injection-geopandas/nvdExploitThird Party Advisory
- github.com/advisories/GHSA-6497-prx7-gpmqghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-69662ghsaADVISORY
- aydinnyunus.github.io/2025/12/27/sql-injection-geopandasghsaWEB
- github.com/geopandas/geopandas/commit/6aa8ef14ffdee4ba1044349ab948e1a1fbfaf419ghsaWEB
- github.com/geopandas/geopandas/issues/3679ghsaWEB
- github.com/geopandas/geopandas/releases/tag/v1.1.2ghsaWEB
- lists.debian.org/debian-lts-announce/2026/04/msg00025.htmlnvdWEB
News mentions
0No linked articles in our index yet.