9 matches found
CVE-2026-4500
A vulnerability was identified in bagofwords1 bagofwords up to 0.0.297. This impacts the function generatedf of the file backend/app/ai/codeexecution/codeexecution.py. Such manipulation leads to injection. The attack may be launched remotely. The exploit is publicly available and might be used...
EUVD-2026-13802
A vulnerability was identified in bagofwords1 bagofwords up to 0.0.297. This impacts the function generatedf of the file backend/app/ai/codeexecution/codeexecution.py. Such manipulation leads to injection. The attack may be launched remotely. The exploit is publicly available and might be used...
CVE-2026-4500
A vulnerability was identified in bagofwords1 bagofwords up to 0.0.297. This impacts the function generatedf of the file backend/app/ai/codeexecution/codeexecution.py. Such manipulation leads to injection. The attack may be launched remotely. The exploit is publicly available and might be used...
CVE-2026-4500
A vulnerability was identified in bagofwords1 bagofwords up to 0.0.297. This impacts the function generatedf of the file backend/app/ai/codeexecution/codeexecution.py. Such manipulation leads to injection. The attack may be launched remotely. The exploit is publicly available and might be used...
CVE-2026-4500
A vulnerability was identified in bagofwords1 bagofwords up to 0.0.297. This impacts the function generatedf of the file backend/app/ai/codeexecution/codeexecution.py. Such manipulation leads to injection. The attack may be launched remotely. The exploit is publicly available and might be used...
CVE-2026-4500
Summary: CVE-2026-4500 affects bagofwords1 bagofwords (up to 0.0.297). The vulnerability targets the function generate_df in backend/app/ai/code_execution/code_execution.py, enabling injection via manipulation of inputs. The attack could be launched remotely and an exploit is publicly available. ...
CVE-2026-4500 bagofwords1 bagofwords code_execution.py generate_df injection
A vulnerability was identified in bagofwords1 bagofwords up to 0.0.297. This impacts the function generatedf of the file backend/app/ai/codeexecution/codeexecution.py. Such manipulation leads to injection. The attack may be launched remotely. The exploit is publicly available and might be used...
bagofwords 安全漏洞
Bagofwords is an open-source data intelligence analysis platform developed by bagofwords1. It supports conversational queries, visualization, and advanced analysis. Versions of Bagofwords 0.0.297 and earlier have security vulnerabilities. These vulnerabilities stem from an injection vulnerability...
PT-2026-26665
A vulnerability was identified in bagofwords1 bagofwords up to 0.0.297. This impacts the function generate df of the file backend/app/ai/code execution/code execution.py. Such manipulation leads to injection. The attack may be launched remotely. The exploit is publicly available and might be used...