AI Threat Alert
Server-Side Request Forgery (SSRF) vulnerability exists in the Web Research Retriever component of langchain-ai/langchain version 0.1.5. The vulnerability arises because the Web Research Retriever does not restrict
Server-Side Request Forgery (SSRF) vulnerability exists in the gradio-app/gradio version 4.21.0, specifically within the `/queue/join` endpoint and the `save_url_to_cache` function. The vulnerability arises when
SSRF (Server-Side Request Forgery) vulnerability exists in the gradio-app/gradio repository, allowing attackers to scan and identify open ports within an internal network. By manipulating the 'file' parameter
SSRF vulnerability exists in the gradio-app/gradio due to insufficient validation of user-supplied URLs in the `/proxy` route. Attackers can exploit this vulnerability by manipulating the `self.replica_urls
attacker to force the service to retrieve data from an arbitrary URL, essentially providing SSRF and potentially injecting content into downstream tasks
LangChain before 0.0.317 allows SSRF via document_loaders/recursive_url_loader.py because crawling can proceed from an external server to an internal server
PraisonAI: Missing Authentication for Critical Function and Improper Neutralization of
Open WebUI: Cross-user file disclosure via /api/chat/completions image_url
PraisonAI CLI automatically resolves @url mentions in prompt text and
Pydantic AI: SSRF cloud-metadata blocklist bypass via IPv4-mapped IPv6 (Incomplete
Apify Model Context Protocol (MCP) server: Domain Allowlist Bypass in
Open WebUI has a SSRF Bypass via HTTP Redirect Following in Web-Fetch and Image-Load Endpoints (not addressed
OpenClaw: Agent gateway config mutations could change protected operator settings
OpenClaw: Browser press/type interaction routes missed complete navigation guard coverage
PraisonAI: Unauthenticated Allow-List Manipulation Bypasses Agent Tool Approval Safety
OpenClaw vulnerable to SSRF in src/agents/tools/web-fetch.ts
PraisonAI Has SSRF in FileTools.download_file() via Unvalidated