Headline

GHSA-2qmj-7962-cjq8: langchain arbitrary code execution vulnerability

An issue in langchain allows an attacker to execute arbitrary code via the PALChain in the python exec method.

1 year ago

langchain arbitrary code execution vulnerability

High severity GitHub Reviewed Published Jul 3, 2023 to the GitHub Advisory Database • Updated Jul 6, 2023

langchain_experimental 0.0.14 allows an attacker to bypass the CVE-2023-36258 fix and execute arbitrary code via the PALChain in the python exec method.

11 months ago

CVE

Open in Source

CVE-2023-36258: Prompt injection which leads to arbitrary code execution in `langchain.chains.PALChain` · Issue #5872 · hwchase17/langchain

An issue in langchain v.0.0.199 allows an attacker to execute arbitrary code via the PALChain in the python exec method.

1 year ago

CVE

Open in Source

#ubuntu #rce

ghsa: Latest News

GHSA-9h9q-qhxg-89xr: Filament has unvalidated ColorColumn and ColorEntry values that can be used for Cross-site Scripting

2 days ago

ghsa

GHSA-jg74-mwgw-v6x3: Vault SSH Secrets Engine Configuration Did Not Restrict Valid Principals By Default

3 days ago

ghsa

GHSA-h4h5-9833-v2p4: Rancher agents can be hijacked by taking over the Rancher Server URL

3 days ago

ghsa

GHSA-g54f-66mw-hv66: Agnai vulnerable to Relative Path Traversal in Image Upload

3 days ago

ghsa

GHSA-h355-hm5h-cm8h: Agnai File Disclosure Vulnerability: JSON via Path Traversal

3 days ago

ghsa

Headline

GHSA-2qmj-7962-cjq8: langchain arbitrary code execution vulnerability

Related news

ghsa: Latest News