All 4 CVE vulnerabilities found in langroid, with AI-generated Chinese analysis, references, and POCs.
Vendor: langroid
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-25481 | Langroid has WAF Bypass Leading to RCE in TableChatAgent CWE-94 | 9.1AI | CriticalAI | 2026-02-04 |
| CVE-2025-46725 | Langroid has a Code Injection vulnerability in LanceDocChatAgent through vector_store CWE-94 | 10.0AI | CriticalAI | 2025-05-20 |
| CVE-2025-46724 | Langroid has a Code Injection vulnerability in TableChatAgent CWE-94 | 9.8 | Critical | 2025-05-20 |
| CVE-2025-46726 | Langroid Vulnerable to XXE Injection via XMLToolMessage CWE-611 | 8.1AI | HighAI | 2025-05-05 |
All 4 known CVE vulnerabilities affecting langroid with full Chinese analysis, references, and POCs where available.