| CVE-2026-44843 |
high |
8.2 |
8.2 |
|
|
|
3d ago |
LangChain is a framework for building agents and LLM-powered applications. Prior to 0.3.85 and 1.3.3, LangChain contains older runtime code paths that deserialize run inputs, run outputs, or other ap… |
| CVE-2026-40087 |
unknown |
— |
— |
|
|
|
2mo ago |
LangChain has incomplete f-string validation in prompt templates |
| CVE-2026-34070 |
unknown |
— |
— |
|
|
|
2mo ago |
LangChain Core has Path Traversal vulnerabilites in legacy `load_prompt` functions |
| CVE-2026-26013 |
unknown |
— |
— |
|
|
|
4mo ago |
LangChain affected by SSRF via image_url token counting in ChatOpenAI.get_num_tokens_from_messages |
| CVE-2025-68664 |
unknown |
— |
— |
|
|
|
5mo ago |
LangChain serialization injection vulnerability enables secret extraction in dumps/loads APIs |
| CVE-2025-65106 |
unknown |
— |
— |
|
|
|
6mo ago |
LangChain Vulnerable to Template Injection via Attribute Access in Prompt Templates |
| CVE-2024-10940 |
unknown |
— |
— |
|
|
|
1y ago |
langchain-core allows unauthorized users to read arbitrary files from the host file system |
| CVE-2024-1455 |
unknown |
— |
— |
|
|
|
2y ago |
LangChain's XMLOutputParser vulnerable to XML Entity Expansion |
| CVE-2024-28088 |
unknown |
— |
— |
|
|
|
2y ago |
LangChain through 0.1.10 allows ../ directory traversal by an actor who is able to control the final part of the path parameter in a load_chain call. This bypasses the intended behavior of loading co… |