Lucene search
K

10 matches found

OSV
OSV
added last week5 views

PYSEC-2026-303 CAI find_file Agent Tool has Command Injection Vulnerability Through Argument Injection

Summary The CAI Cybersecurity AI framework contains multiple argument injection vulnerabilities in its function tools. User-controlled input is passed directly to shell commands via subprocess.Popen with shell=True, allowing attackers to execute arbitrary commands on the host system. Vulnerable...

9.6CVSS6.2AI score0.008EPSS
Exploits3References7
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.76 views

Cybersecurity AI (CAI) Framework 0.5.10 - Command Injection

Exploit Title: Cybersecurity AI CAI Framework 0.5.10 - Command Injection CVE: CVE-2026-25130 Date: 2026-02-03 Exploit Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity Author GitHub: https://github.com/yourusername Vendor Homepage:...

9.6CVSS5.2AI score0.008EPSS
Exploits3
EUVD
EUVD
added 2026/03/12 3:30 p.m.8 views

EUVD-2026-11569

CAI findfile Agent Tool has Command Injection Vulnerability Through Argument Injection...

9.6CVSS5.8AI score0.008EPSS
Exploits3References5
NVD
NVD
added 2026/01/30 9:15 p.m.6 views

CVE-2026-25130

Cybersecurity AI CAI is a framework for AI Security. In versions up to and including 0.5.10, the CAI Cybersecurity AI framework contains multiple argument injection vulnerabilities in its function tools. User-controlled input is passed directly to shell commands via subprocess.Popen with...

9.6CVSS0.008EPSS
Exploits3References3
OSV
OSV
added 2026/01/30 8:38 p.m.4 views

GHSA-JFPC-WJ3M-QW2M CAI find_file Agent Tool has Command Injection Vulnerability Through Argument Injection

Summary The CAI Cybersecurity AI framework contains multiple argument injection vulnerabilities in its function tools. User-controlled input is passed directly to shell commands via subprocess.Popen with shell=True, allowing attackers to execute arbitrary commands on the host system. Vulnerable...

9.6CVSS6.2AI score0.008EPSS
Exploits3References5
Github Security Blog
Github Security Blog
added 2026/01/30 8:38 p.m.14 views

CAI find_file Agent Tool has Command Injection Vulnerability Through Argument Injection

Summary The CAI Cybersecurity AI framework contains multiple argument injection vulnerabilities in its function tools. User-controlled input is passed directly to shell commands via subprocess.Popen with shell=True, allowing attackers to execute arbitrary commands on the host system. Vulnerable...

9.6CVSS6.2AI score0.008EPSS
Exploits3References5Affected Software1
EUVD
EUVD
added 2026/01/30 8:15 p.m.6 views

EUVD-2026-5008

Cybersecurity AI CAI is a framework for AI Security. In versions up to and including 0.5.10, the CAI Cybersecurity AI framework contains multiple argument injection vulnerabilities in its function tools. User-controlled input is passed directly to shell commands via subprocess.Popen with...

9.6CVSS6.2AI score0.008EPSS
Exploits3References3
ATTACKERKB
ATTACKERKB
added 2026/01/30 8:15 p.m.5 views

CVE-2026-25130

Cybersecurity AI CAI is a framework for AI Security. In versions up to and including 0.5.10, the CAI Cybersecurity AI framework contains multiple argument injection vulnerabilities in its function tools. User-controlled input is passed directly to shell commands via subprocess.Popen with...

9.6CVSS6.2AI score0.008EPSS
Exploits3References4Affected Software1
OSV
OSV
added 2026/01/30 8:15 p.m.6 views

CVE-2026-25130 Cybersecurity AI vulnerable to command Injection through argument injection in find_file Agent tool

Cybersecurity AI CAI is a framework for AI Security. In versions up to and including 0.5.10, the CAI Cybersecurity AI framework contains multiple argument injection vulnerabilities in its function tools. User-controlled input is passed directly to shell commands via subprocess.Popen with...

9.6CVSS6.2AI score0.008EPSS
Exploits3References5
Vulnrichment
Vulnrichment
added 2026/01/30 8:15 p.m.6 views

CVE-2026-25130 Cybersecurity AI vulnerable to command Injection through argument injection in find_file Agent tool

Cybersecurity AI CAI is a framework for AI Security. In versions up to and including 0.5.10, the CAI Cybersecurity AI framework contains multiple argument injection vulnerabilities in its function tools. User-controlled input is passed directly to shell commands via subprocess.Popen with...

9.6CVSS6AI score0.008EPSS
Exploits3References3
Rows per page
Query Builder