| CVE-2025-6984 |
unknown |
— |
— |
|
|
|
9mo ago |
Langchain Community Vulnerable to XML External Entity (XXE) Attacks |
| CVE-2025-2828 |
unknown |
— |
— |
|
|
|
11mo ago |
A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit component of the langchain-community package (specifically, langchain_community.agent_toolkits.openapi.toolkit.Request… |
| CVE-2024-8309 |
unknown |
— |
— |
|
|
|
2y ago |
A vulnerability in the GraphCypherQAChain class of langchain-ai/langchain-community version 0.2.5 allows for SQL injection through prompt injection. This vulnerability can lead to unauthorized data m… |
| CVE-2024-5998 |
unknown |
— |
— |
|
|
|
2y ago |
LangChain pickle deserialization of untrusted data |
| CVE-2024-3095 |
unknown |
— |
— |
|
|
|
2y ago |
Server-Side Request Forgery in langchain-community.retrievers.web_research.WebResearchRetriever |
| CVE-2024-2965 |
unknown |
— |
— |
|
|
|
2y ago |
A Denial-of-Service (DoS) vulnerability exists in the `SitemapLoader` class of the `langchain-ai/langchain` repository, affecting all versions. The `parse_sitemap` method, responsible for parsing sit… |
| CVE-2024-2057 |
unknown |
— |
— |
|
|
|
2y ago |
A vulnerability was found in LangChain langchain_community 0.0.26. It has been classified as critical. Affected is the function load_local in the library libs/community/langchain_community/retrievers… |