HIGH PyPI
GHSA-22c2-9gwg-mj59 · CVE-2025-46725 Langroid has a Code Injection vulnerability in LanceDocChatAgent through vector_store
Modified: 5/20/2025
package
PyPI / langroid
pkg:pypi/langroid
CRITICAL 9.8 PyPI
GHSA-jqq5-wc57-f8hj · CVE-2025-46724 Langroid has a Code Injection vulnerability in TableChatAgent
Modified: 2/5/2026
CRITICAL 9.8 PyPI
GHSA-mxfr-6hcw-j9rq · CVE-2026-25879 Langroid has Prompt to SQL Injection, Leading to RCE
Modified: 5/27/2026
HIGH PyPI
GHSA-pw95-88fg-3j6f · CVE-2025-46726 Langroid Allows XXE Injection via XMLToolMessage
Modified: 5/5/2025
CRITICAL PyPI
GHSA-x34r-63hx-w57f · CVE-2026-25481 Langroid has WAF Bypass Leading to RCE in TableChatAgent
Modified: 2/5/2026