Search: prompt injection | AI Threat Alert

CVE MEDIUM CVE-2026-40152

2026-04-10

PraisonAIAgents: Path Traversal via Unvalidated Glob Pattern in list_files

CVSS 5.3 praisonaiagents View details

CVE HIGH CVE-2026-47397

2026-05-29

PraisonAI has an Arbitrary File Write in Python API

PraisonAI View details

CVE CRITICAL CVE-2026-41265

2026-04-23

from the lack of proper sandboxing when evaluating an LLM generated python script. Using prompt injection techniques, an unauthenticated attacker with the ability to send prompts to a chatflow using

CVSS 9.8 flowise View details

CVE HIGH GHSA-fq4x-789w-jg5h

2026-06-18

AgenticMail: Unauthenticated inbound mail triggers bypassPermissions resume of the operator

@agenticmail/openclaw View details

CVE HIGH CVE-2026-35394

2026-04-04

@mobilenext/mobile-mcp: Arbitrary Android Intent Execution via mobile_open_url

CVSS 8.3 @mobilenext/mobile-mcp View details

CVE HIGH CVE-2023-32786

2023-10-20

Langchain through 0.0.155, prompt injection allows an attacker to force the service to retrieve data from an arbitrary URL, essentially providing SSRF and potentially injecting content into downstream tasks

CVSS 7.5 langchain View details

CVE HIGH GHSA-hv85-774v-26fg

2026-05-19

auth-fetch-mcp: SSRF and disk exfiltration via unvalidated auth

CVSS 8.2 auth-fetch-mcp View details

CVE CRITICAL CVE-2026-41264

2026-04-21

Flowise: CSV Agent Prompt Injection Remote Code Execution Vulnerability

CVSS 9.8 flowise-components View details

CVE CRITICAL CVE-2024-58351

2026-06-20

sandbox escape, denial of service by crashing the server, server-side request forgery, prompt injection, and server

CVSS 9.8 Flowise View details

CVE HIGH CVE-2026-45398

2026-05-14

Open WebUI Vulnerable to IDOR: Retrieval API Bypasses Knowledge Base

CVSS 7.5 open-webui View details

CVE HIGH GHSA-c969-5x3p-vq3v

2026-06-18

PraisonAI: IMAP Command Injection via Unsanitized Email Search Parameters

CVSS 8.1 praisonaiagents View details

CVE CRITICAL CVE-2023-29374

2023-04-05

LangChain through 0.0.131, the LLMMathChain chain allows prompt injection attacks that can execute arbitrary code via the Python exec method

CVSS 9.8 langchain View details

CVE MEDIUM GHSA-ffp3-3562-8cv3

2026-04-10

PraisonAI: Coarse-Grained Tool Approval Cache Bypasses Per-Invocation Consent

CVSS 5.5 praisonaiagents View details

CVE HIGH CVE-2026-46580

2026-06-18

malicious repository containing prompt template files that, when the workspace was opened in Theia, replaced the AI's system instructions with attacker-controlled content (indirect prompt injection). Combined with other

@theia/ai-editor View details

CVE CRITICAL CVE-2026-30741

2026-03-11

OpenClaw Agent Platform v2026.2.6 allows attackers to execute arbitrary code via a Request-Side prompt injection attack

CVSS 9.8 openclaw View details

CVE HIGH CVE-2026-44688

2026-06-18

agent, would cause the agent to follow attacker-controlled instructions (indirect prompt injection). Combined with other AI chat features available in untrusted workspaces, this enabled attack

@theia/ai-ide View details

CVE HIGH CVE-2026-54007

2026-06-17

Open WebUI: Cross-origin postMessage confirmation bypass via action:submit

open-webui View details

CVE HIGH CVE-2026-44552

2026-05-08

Open WebUI: Redis Cache Keys tool_servers and terminal_servers

CVSS 8.7 open-webui View details

CVE HIGH GHSA-xcqx-9jf5-w339

2026-06-19

SearXNG MCP Server: Unbounded Response Body Read Bypasses URL Size

CVSS 7.5 mcp-searxng View details

CVE MEDIUM CVE-2026-22551

2026-06-18

from AI responses, triggering HTTP requests to arbitrary external URLs without restriction. Combined with prompt injection in a malicious workspace, an attacker could induce the AI agent to construct image

@theia/ai-ide View details