| CVE-2026-44843 |
high |
8.2 |
8.2 |
|
|
|
8d ago |
LangChain vulnerable to unsafe deserialization of attacker-controlled objects through overly broad `load()` allowlists |
| CVE-2026-34070 |
high |
7.5 |
7.5 |
|
|
|
2mo ago |
LangChain is a framework for building agents and LLM-powered applications. Prior to version 1.2.22, multiple functions in langchain_core.prompts.loading read files from paths embedded in deserialized… |
| CVE-2025-68664 |
unknown |
— |
1.0 |
|
|
|
5mo ago |
LangChain serialization injection vulnerability enables secret extraction in dumps/loads APIs |
| CVE-2026-40087 |
unknown |
— |
— |
|
|
|
2mo ago |
LangChain has incomplete f-string validation in prompt templates |
| CVE-2026-26013 |
unknown |
— |
— |
|
|
|
4mo ago |
LangChain affected by SSRF via image_url token counting in ChatOpenAI.get_num_tokens_from_messages |
| CVE-2025-65106 |
unknown |
— |
— |
|
|
|
7mo ago |
LangChain Vulnerable to Template Injection via Attribute Access in Prompt Templates |
| CVE-2024-10940 |
unknown |
— |
— |
|
|
|
1y ago |
langchain-core allows unauthorized users to read arbitrary files from the host file system |
| CVE-2024-1455 |
unknown |
— |
— |
|
|
|
2y ago |
LangChain's XMLOutputParser vulnerable to XML Entity Expansion |
| CVE-2024-28088 |
unknown |
— |
— |
|
|
|
2y ago |
LangChain through 0.1.10 allows ../ directory traversal by an actor who is able to control the final part of the path parameter in a load_chain call. This bypasses the intended behavior of loading co… |
