CVE-2025-54558

OpenAI Codex CLI before 0.9.0 auto-approves ripgrep aka rg execution even with the --pre or --hostname-bin or --search-zip or -z flag...

CVE-2025-54558

OpenAI Codex CLI before 0.9.0 auto-approves ripgrep aka rg execution even with the --pre or --hostname-bin or --search-zip or -z flag...

Inclusion of Functionality from Untrusted Control Sphere

Overview @openai/codex is a OpenAI Codex CLI Lightweight coding agent that runs in your terminal Affected versions of this package are vulnerable to Inclusion of Functionality from Untrusted Control Sphere due to auto-approving ripgrep execution even when the --pre, --hostname-bin, --search-zip, ...

OpenAI Codex CLI 安全漏洞

OpenAI Codex CLI is an OpenAI open source lightweight coding agent software that runs in the terminal. A security vulnerability exists in OpenAI Codex CLI versions prior to 0.9.0 that stems from automatic approval of ripgrep execution, which could lead to a security risk...

CVE-2025-54558

OpenAI Codex CLI before 0.9.0 auto-approves ripgrep aka rg execution even with the --pre or --hostname-bin or --search-zip or -z flag...

CVE-2025-54558

OpenAI Codex CLI before 0.9.0 auto-approves ripgrep aka rg execution even with the --pre or --hostname-bin or --search-zip or -z flag...

CVE-2025-54558

OpenAI Codex CLI (prior to 0.9.0) is affected: the CLI auto-approves ripgrep (rg) execution even when --pre, --hostname-bin, --search-zip, or -z are used. This could enable unintended command execution via these flags. Remediation: upgrade to version 0.9.0 or later.

PT-2025-30717 · Openai +1 · Openai Codex Cli +1

Name of the Vulnerable Software and Affected Versions: OpenAI Codex CLI versions prior to 0.9.0 Description: The OpenAI Codex CLI application automatically approves the execution of ripgrep rg even when specific flags—--pre, --hostname-bin, --search-zip, or -z—are used. Recommendations: Update to...

CVE-2025-7780

The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.4. The simpleTranscribeAudio endpoint fails to restrict URL schemes before calling getaudio. This makes it possible for authenticated attackers, with Subscriber-level acces...

WordPress plugin AI Engine 信息泄露漏洞

WordPress AI Engine is a plugin based on OpenAI technology, which is mainly used to integrate artificial intelligence features into WordPress websites to improve the efficiency of content generation, automated operations and so on. WordPress AI Engine suffers from an information disclosure...

MAL-2025-6298 Malicious code in openai-fm (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8926ff7d91a01298fc220ba494c8948e0480927fffc10ee396d0dd3bfe6ba2e0 Any computer that has this package installed or running should be considered...

Malicious code in openai-fm (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8926ff7d91a01298fc220ba494c8948e0480927fffc10ee396d0dd3bfe6ba2e0 Any computer that has this package installed or running should be considered...

Questionnaire Mate 2.0

Questionnaire Mate is a cool script that lets you read in a list of questions and uses OpenAI to answer them based on a private knowledge base. Useful for a less informed individual to feed AI audit questions and extract proper answers...

CVE-2025-7021

Fullscreen API Spoofing and UI Redressing in the handling of Fullscreen API and UI rendering in OpenAI Operator SaaS on Web allows a remote attacker to capture sensitive user input e.g., login credentials, email addresses via displaying a deceptive fullscreen interface with overlaid fake browser...

Malicious code in openai-voice-agent-sdk-sample (npm)

The package communicates with a domain associated with malicious activity...

MAL-2025-6114 Malicious code in openai-voice-agent-sdk-sample (npm)

The package communicates with a domain associated with malicious activity...

CVE-2025-7021 OpenAI Operator - API Spoofing through Locking Operator on FullScreen

Fullscreen API Spoofing and UI Redressing in the handling of Fullscreen API and UI rendering in OpenAI Operator SaaS on Web allows a remote attacker to capture sensitive user input e.g., login credentials, email addresses via displaying a deceptive fullscreen interface with overlaid fake browser...

CVE-2025-7021

CVE-2025-7021 affects OpenAI Operator SaaS on Web via the Fullscreen API handling and UI rendering, enabling a remote attacker to capture sensitive user input by presenting a deceptive fullscreen interface with overlaid fake controls and distracting elements (e.g., cookie prompts). The connected ...

CVE-2025-7021 OpenAI Operator - API Spoofing through Locking Operator on FullScreen

Fullscreen API Spoofing and UI Redressing in the handling of Fullscreen API and UI rendering in OpenAI Operator SaaS on Web allows a remote attacker to capture sensitive user input e.g., login credentials, email addresses via displaying a deceptive fullscreen interface with overlaid fake browser...

PT-2025-29147 · Openai · Openai Operator Saas

Name of the Vulnerable Software and Affected Versions: OpenAI Operator SaaS on Web affected versions not specified Description: A flaw exists in the handling of the Fullscreen API and UI rendering that allows a remote attacker to capture sensitive user input, such as login credentials and email...