CVE-2024-28088 PoC — LangChain 安全漏洞

Source

https://github.com/levpachmanov/cve-2024-28088-poc

Associated Vulnerability

Title:LangChain 安全漏洞 (CVE-2024-28088)
Description:LangChain是通过可组合性使用 LLM 构建应用程序。 LangChain 0.1.10及之前版本存在安全漏洞，该漏洞源于加载配置文件时存在URI遍历漏洞。

File Snapshot


 [4.0K]  /data/pocs/0d35032d852c09789d372a296c285f85027910ee
├── [1.0K]  poc.py
├── [ 476]  poc_rce.json
├── [  20]  pwnd.html
└── [ 708]  requirements.txt

0 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.