package

PyPI / langchain-community

pkg:pypi/langchain-community

HIGH 7.5 PyPI

Langchain Community Vulnerable to XML External Entity (XXE) Attacks

Modified: 2/4/2026

MEDIUM 4.8 PyPI

Server-Side Request Forgery in langchain-community.retrievers.web_research.WebResearchRetriever

Modified: 7/24/2024

MEDIUM 4.2 PyPI

Denial of service in langchain-community

Modified: 11/4/2024

MEDIUM 4.9 PyPI

Langchain SQL Injection vulnerability

Modified: 11/12/2024

MEDIUM 5.2 PyPI

LangChain pickle deserialization of untrusted data

Modified: 7/30/2025

HIGH 8.4 PyPI

LangChain Community SSRF vulnerability exists in RequestsToolkit component

Modified: 7/17/2025

CRITICAL 9.8 PyPI

Modified: 6/10/2026

CRITICAL 9.8 PyPI

Modified: 5/21/2026

CRITICAL 10.0 PyPI

Modified: 6/10/2026