CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

46 matches found

Github Security Blog•added 2026/04/10 7:25 p.m.•6 views

PraisonAI: Hardcoded `approval_mode="auto"` in Chainlit UI Overrides Administrator Configuration, Enabling Unapproved Shell Command Execution

Summary The Chainlit UI modules chat.py and code.py hardcode config.approvalmode = "auto" after loading administrator configuration from the PRAISONAPPROVALMODE environment variable, silently overriding any "manual" or "scoped" approval setting. This defeats the human-in-the-loop approval gate fo...

6.3AI score

Exploits0References3Affected Software1

OSV•added 2026/04/10 7:25 p.m.•2 views

GHSA-QWGJ-RRPJ-75XM PraisonAI: Hardcoded `approval_mode="auto"` in Chainlit UI Overrides Administrator Configuration, Enabling Unapproved Shell Command Execution

8.8CVSS6.3AI score

Exploits0References3

Veracode•added 2026/01/22 10:10 a.m.•4 views

Server-Side Request Forgery (SSRF)

Chainlit is vulnerable to Server-Side Request Forgery SSRF. The vulnerability is due to fetching attacker-controlled URLs during element updates, where the SQLAlchemy data layer performs outbound HTTP GET requests on user-supplied url values, allowing authenticated attackers to access internal...

8.3CVSS5.9AI score0.00052EPSS

Exploits1References5Affected Software1

The Hacker News•added 2026/01/21 9:10 a.m.•8 views

Chainlit AI Framework Flaws Enable Data Theft via File Read and SSRF Bugs

Security vulnerabilities were uncovered in the popular open-source artificial intelligence AI framework Chainlit that could allow attackers to steal sensitive data, which may allow for lateral movement within a susceptible organization. Zafran Security said the high-severity flaws, collectively...

8.3CVSS6.3AI score0.00052EPSS

Exploits2

RedhatCVE•added 2026/01/20 11:26 p.m.•4 views

CVE-2026-22218

Chainlit versions prior to 2.9.4 contain an arbitrary file read vulnerability in the /project/element update flow. An authenticated client can send a custom Element with a user-controlled path value, causing the server to copy the referenced file into the attacker’s session. The resulting element...

7.1CVSS5.6AI score0.00044EPSS

Exploits1References1

RedhatCVE•added 2026/01/20 11:26 p.m.•2 views

CVE-2026-22219

Chainlit versions prior to 2.9.4 contain a server-side request forgery SSRF vulnerability in the /project/element update flow when configured with the SQLAlchemy data layer backend. An authenticated client can provide a user-controlled url value in an Element, which is fetched by the SQLAlchemy...

8.3CVSS5.8AI score0.00052EPSS

Exploits1References1

vulnersOsv•added 2026/01/20 12:30 a.m.•0 views

agentengine-sdk-python (>=0.2.0 <=0.4.0), agentic-chat-ui (>=0.1.0 <=0.2.4) +46 more potentially affected by CVE-2026-22219 via chainlit (>=1.0.0 <=2.6.3)

chainlit PYPI version =1.0.0, =0.2.0, =0.1.0, =0.3.0, =0.1.0, =0.0.3, =0.14.0, =0.0.0, =0.1.1, =0.1.1, =0.1.0, =0.1.0, =0.1.0, =1.0.0, =1.3.0 - chainlit-praisonai =0.1.0 and more Source cves: CVE-2026-22219 Source advisory: OSV:GHSA-2G59-M95P-PGFQ...

8.3CVSS6AI score0.00052EPSS

Exploits1

Github Security Blog•added 2026/01/20 12:30 a.m.•6 views

Chainlit contain a server-side request forgery (SSRF) vulnerability

8.3CVSS5.8AI score0.00052EPSS

Exploits1References6Affected Software1

OSV•added 2026/01/20 12:30 a.m.•1 views

GHSA-2G59-M95P-PGFQ Chainlit contain a server-side request forgery (SSRF) vulnerability

8.3CVSS5.8AI score0.00052EPSS

Exploits1References6

OSV•added 2026/01/20 12:15 a.m.•3 views

CVE-2026-22219

7.7CVSS5.8AI score

Exploits0References3

OSV•added 2026/01/20 12:15 a.m.•3 views

CVE-2026-22218

6.5CVSS5.7AI score

Exploits0References3

NVD•added 2026/01/20 12:15 a.m.•3 views

CVE-2026-22218

7.1CVSS0.00044EPSS

Exploits1References3

CNNVD•added 2026/01/20 12:0 a.m.•0 views

Chainlit code issue vulnerabilities

Chainlit is an open-source large-scale dialogue interface framework developed by Chainlit. Versions of Chainlit prior to 2.9.4 contained code vulnerabilities. These vulnerabilities stemmed from improper handling of URL parameters during the update process for projects/elements, which could lead t...

8.3CVSS6.1AI score0.00052EPSS

Exploits1References3

CNNVD•added 2026/01/20 12:0 a.m.•2 views

Chainlit path traversal vulnerability

Chainlit is an open-source large-scale dialogue interface framework developed by Chainlit. Versions of Chainlit prior to 2.9.4 contained a path traversal vulnerability. This vulnerability stemmed from improper handling of path parameters during the update process for /project/element, potentially...

7.1CVSS6.1AI score0.00044EPSS

Exploits1References3

Snyk•added 2026/01/19 11:48 p.m.•1 views

Server-side Request Forgery (SSRF)

Overview chainlit is a Build Conversational AI. Affected versions of this package are vulnerable to Server-side Request Forgery SSRF in the /project/element update flow when the SQLAlchemy data layer backend is configured. An attacker can cause the server to send arbitrary HTTP requests to intern...

8.3CVSS5.8AI score0.00052EPSS

Exploits1References2

vulnersOsv•added 2026/01/19 11:48 p.m.•1 views

agentengine-sdk-python (>=0.2.0 <=0.4.0), agentic-chat-ui (>=0.1.0 <=0.2.4) +43 more potentially affected by CVE-2026-22219 via chainlit (>=2.0.0 <=2.6.3)

chainlit PYPI version =2.0.0, =0.2.0, =0.1.0, =0.3.0, =0.1.0, =0.0.3, =0.14.0, =0.0.0, =0.1.1, =0.1.0, =0.1.0, =0.1.0, =1.0.0, =0.1.1, =0.1.2 and more Source cves: CVE-2026-22219 Source advisory: SNYK:PYTHON-CHAINLIT-15037182...

8.3CVSS6AI score0.00052EPSS

Exploits1