CVE-2026-39891

PraisonAI is a multi-agent teams system. Prior to 4.5.115, the createagentcentrictools function returns tools like acpcreatefile that process file content using template rendering. When user input from agent.start is passed directly into these tools without escaping, template expressions in the...

CVE-2024-5532

CVE-2024-5532 is a stored XSS vulnerability in OpenText OpenText Operations Agent. The issue allows an attacker with local admin privileges to manipulate the content of the agent’s internal status page on the local system. Affected versions are 12.20–12.26. The connected sources reiterate the sam...

SQL Injection

1Panel is vulnerable to SQL Injection. The vulnerability is due to improper handling of the User-Agent input, which results in SQL injection...

CVE-2022-33752

CA Automic Automation 12.2 and 12.3 contain an insufficient input validation vulnerability in the Automic agent that could allow a remote attacker to potentially execute arbitrary code...

CVE-2020-23054

A cross-site scripting XSS vulnerability in NSK User Agent String Switcher Service v0.3.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the user agent input field...