Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Pydantic AI affected by Stored XSS via Path Traversal in Web UI CDN URL
Vulnerability Description
Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. From 1.34.0 to before 1.51.0, a path traversal vulnerability in the Pydantic AI web UI allows an attacker to serve arbitrary JavaScript in the context of the application by crafting a malicious URL. In affected versions, the CDN URL is constructed using a version query parameter from the request URL. This parameter is not validated, allowing path traversal sequences that cause the server to fetch and serve attacker-controlled HTML/JavaScript from an arbitrary source on the same CDN, instead of the legitimate chat UI package. If a victim clicks the link or visits it via an iframe, attacker-controlled code executes in their browser, enabling theft of chat history and other client-side data. This vulnerability only affects applications that use Agent.to_web to serve a chat interface and clai web to serve a chat interface from the CLI. These are typically run locally (on localhost), but may also be deployed on a remote server. This vulnerability is fixed in 1.51.0.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
pydantic-ai 跨站脚本漏洞
Vulnerability Description
pydantic-ai是Pydantic开源的一个用于构建生产级应用程序和工作流的生成式AI框架。 pydantic-ai 1.34.0至1.51.0之前版本存在跨站脚本漏洞,该漏洞源于Web UI存在路径遍历,可能允许攻击者通过特制URL在应用环境中提供任意JavaScript,导致客户端数据泄露。
CVSS Information
N/A
Vulnerability Type
N/A