AI Threat Alert
All CVEs Papers
Severity:
All Critical High Medium Low
62 results in 9ms
CVE HIGH GHSA-f228-chmx-v6j6

Flowise: Remote code execution vulnerability in AirtableAgent.ts caused by lack

CVSS 8.3 flowise-components View details
CVE HIGH CVE-2026-4399

Prompt injection vulnerability in 1millionbot Millie chatbot that occurs when a user manages to evade chat restrictions using Boolean prompt injection techniques (formulating a question in such a way that

CVSS 7.5 View details
CVE HIGH CVE-2024-12911

JSONalyzeQueryEngine` in the run-llama/llama_index repository allows for SQL injection via prompt injection. This can lead to arbitrary file creation and Denial-of-Service (DoS) attacks. The vulnerability affects

CVSS 7.1 llamaindex View details
CVE HIGH GHSA-2r2p-4cgf-hv7h

server CORS wildcard + auth-off-by-default enables CSRF graph exfiltration and persistent indirect prompt injection

engramx View details
CVE HIGH GHSA-6r77-hqx7-7vw8

Flowise: APIChain Prompt Injection SSRF in GET/POST API Chains

CVSS 7.1 flowise-components View details
CVE HIGH CVE-2026-40153

PraisonAIAgents: Environment Variable Secret Exfiltration via os.path.expandvars() Bypassing shell=False

CVSS 7.4 praisonaiagents View details
CVE HIGH GHSA-4pcv-mg8v-vrgf

PraisonAI: Server-Side Request Forgery (SSRF) in SearxNG / search_web

CVSS 8.8 praisonaiagents View details
CVE HIGH CVE-2026-47397

PraisonAI has an Arbitrary File Write in Python API

PraisonAI View details
CVE HIGH GHSA-fq4x-789w-jg5h

AgenticMail: Unauthenticated inbound mail triggers bypassPermissions resume of the operator

@agenticmail/openclaw View details
CVE HIGH CVE-2026-35394

@mobilenext/mobile-mcp: Arbitrary Android Intent Execution via mobile_open_url

CVSS 8.3 @mobilenext/mobile-mcp View details
CVE HIGH CVE-2023-32786

Langchain through 0.0.155, prompt injection allows an attacker to force the service to retrieve data from an arbitrary URL, essentially providing SSRF and potentially injecting content into downstream tasks

CVSS 7.5 langchain View details
CVE HIGH GHSA-hv85-774v-26fg

auth-fetch-mcp: SSRF and disk exfiltration via unvalidated auth

CVSS 8.2 auth-fetch-mcp View details
CVE HIGH CVE-2026-45398

Open WebUI Vulnerable to IDOR: Retrieval API Bypasses Knowledge Base

CVSS 7.5 open-webui View details
CVE HIGH GHSA-c969-5x3p-vq3v

PraisonAI: IMAP Command Injection via Unsanitized Email Search Parameters

CVSS 8.1 praisonaiagents View details
CVE HIGH CVE-2026-46580

malicious repository containing prompt template files that, when the workspace was opened in Theia, replaced the AI's system instructions with attacker-controlled content (indirect prompt injection). Combined with other

@theia/ai-editor View details
CVE HIGH CVE-2026-44688

agent, would cause the agent to follow attacker-controlled instructions (indirect prompt injection). Combined with other AI chat features available in untrusted workspaces, this enabled attack

@theia/ai-ide View details
CVE HIGH CVE-2026-54007

Open WebUI: Cross-origin postMessage confirmation bypass via action:submit

open-webui View details
CVE HIGH CVE-2026-44552

Open WebUI: Redis Cache Keys tool_servers and terminal_servers

CVSS 8.7 open-webui View details
CVE HIGH GHSA-xcqx-9jf5-w339

SearXNG MCP Server: Unbounded Response Body Read Bypasses URL Size

CVSS 7.5 mcp-searxng View details
CVE HIGH CVE-2026-47398

PraisonAI: Arbitrary code execution via unguarded `spec.loader.exec_module` in `agents_generator.py

CVSS 8.1 PraisonAI View details
Page 1 of 4 Next