pkg:PyPI/langchain

All known vulnerabilities

• CRITICAL9.8CVE-2023-32785Langchain SQL Injection vulnerability
  from 0, < 0.0.247
• CRITICAL9.8CVE-2023-39631Langchain vulnerable to arbitrary code execution via the evaluate function in the numexpr library
  from 0, < 0.0.308
• CRITICAL9.8CVE-2023-39631Langchain vulnerable to arbitrary code execution via the evaluate function in the numexpr library
  from 0, < 0.0.308
• CRITICAL9.8CVE-2023-36281langchain vulnerable to arbitrary code execution
  from 0, < 0.0.171
• CRITICAL9.8CVE-2023-36281langchain vulnerable to arbitrary code execution
  from 0, < 0.0.312
• CRITICAL9.8CVE-2023-39659LangChain vulnerable to arbitrary code execution
  from 0, < 0.0.325
• CRITICAL9.8CVE-2023-39659LangChain vulnerable to arbitrary code execution
  from 0, < 0.0.233
• CRITICAL9.8CVE-2023-38860LangChain vulnerable to arbitrary code execution
  from 0, < 0.0.247
• CRITICAL9.8CVE-2023-38896LangChain vulnerable to arbitrary code execution
  from 0, < 0.0.195
• CRITICAL9.8CVE-2023-38896LangChain vulnerable to arbitrary code execution
  from 0, < 0.0.236
• CRITICAL9.8CVE-2023-38860LangChain vulnerable to arbitrary code execution
  from 0, < 0.0.247
• CRITICAL9.8CVE-2023-36095langchain Code Injection vulnerability
  from 0, < 0.0.236
• CRITICAL9.8CVE-2023-36095langchain Code Injection vulnerability
  from 0, < 0.0.236
• CRITICAL9.8CVE-2023-36188langchain vulnerable to arbitrary code execution
  from 0, < 0.0.236
• CRITICAL9.8CVE-2023-36188langchain vulnerable to arbitrary code execution
  from 0, < 0.0.247
• CRITICAL9.8CVE-2023-36258langchain arbitrary code execution vulnerability
  from 0, < 0.0.247
• CRITICAL9.8CVE-2023-36258langchain arbitrary code execution vulnerability
  from 0, < 0.0.247
• CRITICAL9.8CVE-2023-34541Langchain vulnerable to arbitrary code execution
  from 0, < 0.0.247
• CRITICAL9.8CVE-2023-34541Langchain vulnerable to arbitrary code execution
  from 0, < 0.0.247
• CRITICAL9.8CVE-2023-34540Langchain OS Command Injection vulnerability
  from 0, < 0.0.225
• CRITICAL9.8CVE-2023-34540Langchain OS Command Injection vulnerability
  from 0, < 0.0.225
• CRITICAL9.8CVE-2023-29374LangChain vulnerable to code injection
  from 0, < 0.0.132
• CRITICAL9.8CVE-2023-29374LangChain vulnerable to code injection
  from 0, <= 0.0.131
• HIGH8.8CVE-2023-46229LangChain Server Side Request Forgery vulnerability
  from 0, < 9ecb7240a480720ec9d739b3877a52f76098a2b8 | from 0, < 0.0.317
• HIGH8.8CVE-2023-46229LangChain Server Side Request Forgery vulnerability
  from 0, < 0.0.317
• HIGH7.5CVE-2023-32786Langchain Server-Side Request Forgery vulnerability
  from 0, < 0.0.329
• HIGH7.5CVE-2023-36189langchain SQL Injection vulnerability
  from 0, < 0.0.247
• HIGH7.5CVE-2023-36189langchain SQL Injection vulnerability
  from 0, < 0.0.247
• HIGH7.1CVE-2026-45134LangSmith SDK: Public prompt pull deserializes untrusted manifests without trust boundary warning
  from 0, < 0.3.30
• MEDIUM6.5CVE-2024-3571langchain vulnerable to path traversal
  from 0, < 0.0.353
• MEDIUM4.9CVE-2024-8309Langchain SQL Injection vulnerability
  from 0, < c2a3021bb0c5f54649d380b42a0684ca5778c255 | from 0, < 0.2.0
• MEDIUM4.9CVE-2024-8309Langchain SQL Injection vulnerability
  from 0, < 0.2.0
• MEDIUM4.2CVE-2024-2965Denial of service in langchain-community
  from 0, < 0.2.5
• MEDIUM4.2CVE-2024-2965Denial of service in langchain-community
  from 0, < 73c42306745b0831aa6fe7fe4eeb70d2c2d87a82 | from 0, < 0.2.5
• LOW3.7CVE-2024-0243langchain Server-Side Request Forgery vulnerability
  from 0, < 0.1.0
• —CVE-2024-28088LangChain directory traversal vulnerability
  from 0, < 0.1.11
• —CVE-2024-28088LangChain directory traversal vulnerability
  from 0, < 0.0.339