AI Security Threat Feed

Prompt Injection Data Extraction Agent Framework

praisonaiagents: SSRF leaks cloud IAM credentials

praisonaiagents Patch: 1.5.95 CWE-918 11 5 ATLAS

Code Execution Prompt Injection Auth Bypass Agent Framework Plugin

PraisonAI: sandbox escape via shell=True blocklist bypass

praisonai Patch: 4.5.97 CWE-78 1 6 ATLAS 1 incident

Data Extraction Auth Bypass Supply Chain Framework API Agent

PraisonAI: SSRF via api_base steals cloud IAM credentials

praisonai Patch: 4.5.90 CWE-918 1 5 ATLAS

Code Execution Prompt Injection Auth Bypass Agent Framework Plugin

PraisonAI: OS command injection via run_python() shell escape

praisonaiagents Patch: 1.5.90 CWE-78 11 6 ATLAS 1 incident

CRITICAL EXPLOIT AVAIL

praisonaiagents: sandbox bypass enables full host RCE

Code Execution Prompt Injection Supply Chain Agent Framework Plugin

praisonaiagents Patch: 1.5.90 CWE-693 11 7 ATLAS

Auth Bypass Data Extraction Agent Plugin Framework

Open WebUI: access control bypass leaks Tool Valve API keys

open-webui Patch: 0.8.11 CWE-285 5 ATLAS

MEDIUM EXPLOIT AVAIL

ONNX: symlink traversal reads host files via model loading

Supply Chain Data Extraction Framework Model

onnx Patch: 1.21.0 CWE-22 1.1K 5 ATLAS

Supply Chain Data Extraction Framework Model

ONNX: hardlink path traversal leaks sensitive files

onnx Patch: 1.21.0 CWE-22 1.1K 4 ATLAS

HIGH

ONNX: property overwrite via crafted model file

Supply Chain DoS Code Execution Framework Model Inference

onnx Patch: 1.21.0 CWE-20 1.1K 5 ATLAS

UNKNOWN EXPLOIT AVAIL

ONNX: symlink path traversal allows arbitrary file read

CVE-2026-27489

EPSS 0.1%

Supply Chain Data Extraction Framework Model

onnx Patch: 1.21.0 CWE-23 1.1K 5 ATLAS

Anthropic SDK: TOCTOU symlink escape in async memory tool

CVE-2026-34452

EPSS 0.0%

Code Execution Data Extraction Auth Bypass Framework Agent API

anthropic Patch: 0.87.0 CWE-59 4.7K 5 ATLAS 17 incidents

anthropic-ai/sdk: memory tool path traversal escape

CVE-2026-34451

EPSS 0.1%

Prompt Injection Data Extraction Code Execution Framework Agent API

@anthropic-ai/sdk Patch: 0.81.0 CWE-22 263 6 ATLAS

anthropic-sdk: insecure file perms expose agent memory

CVE-2026-34450

EPSS 0.0%

Data Leakage Model Poisoning Data Extraction Agent Framework API

anthropic Patch: 0.87.0 CWE-276 4.7K 4 ATLAS 17 incidents

HIGH

OpenClaw: .npmrc hijack enables RCE on plugin install

GHSA-m3mh-3mpg-37hw

8.6

Code Execution Supply Chain Framework Plugin Agent

openclaw Patch: 2026.3.24 CWE-426 4 4 ATLAS 3 incidents

OpenClaw: HTTP scope bypass enables model enumeration

GHSA-68f8-9mhj-h2mp

Auth Bypass Data Extraction API Inference

openclaw Patch: 2026.3.24 CWE-284 4 4 ATLAS 2 incidents

HIGH

OpenClaw: sandbox escape via mediaUrl path traversal

GHSA-hr5v-j9h9-xjhg

7.7

Data Extraction Auth Bypass Agent Plugin Framework

openclaw Patch: 2026.3.24 CWE-22 4 5 ATLAS 2 incidents

CRITICAL EXPLOIT AVAIL

MLflow: RCE via unsanitized model dependency specs

Code Execution Supply Chain Framework

mlflow Patch: 3.8.1 CWE-77 624 4 ATLAS 1 incident

CRITICAL EXPLOIT AVAIL

MLflow: path traversal enables sandbox escape, file overwrite

Supply Chain Code Execution Framework

mlflow Patch: 3.9.0rc0 CWE-29 624 5 ATLAS

openclaw: webhook rate-limit bypass enables token brute-force

CVE-2026-35646

EPSS 0.1%

Auth Bypass Data Extraction Agent Plugin

openclaw Patch: 2026.3.28 CWE-307 4 4 ATLAS 1 incident