EUVD-2025-8054

Malicious code in bioql PyPI...

EUVD-2025-8683

Malicious code in bioql PyPI...

CVE-2025-2954

A vulnerability, which was classified as problematic, was found in mannaandpoem OpenManus up to 2025.3.13. This affects the function execute of the file app/tool/filesaver.py of the component File Handler. The manipulation leads to improper access controls. Local access is required to approach th...

CVE-2025-2954

A vulnerability, which was classified as problematic, was found in mannaandpoem OpenManus up to 2025.3.13. This affects the function execute of the file app/tool/filesaver.py of the component File Handler. The manipulation leads to improper access controls. Local access is required to approach th...

CVE-2025-2954

A vulnerability, which was classified as problematic, was found in mannaandpoem OpenManus up to 2025.3.13. This affects the function execute of the file app/tool/filesaver.py of the component File Handler. The manipulation leads to improper access controls. Local access is required to approach th...

Access Control Bypass

Overview openmanus is an Add your description here Affected versions of this package are vulnerable to Access Control Bypass through the execute function. An attacker can manipulate file handling operations by exploiting the improper access controls configured in the system. This is only...

CVE-2025-2954 mannaandpoem OpenManus File file_saver.py execute access control

A vulnerability, which was classified as problematic, was found in mannaandpoem OpenManus up to 2025.3.13. This affects the function execute of the file app/tool/filesaver.py of the component File Handler. The manipulation leads to improper access controls. Local access is required to approach th...

CVE-2025-2954

OpenManus (mannaandpoem) up to 2025.3.13 is affected by a vulnerability in the File Handler component, specifically the execute function in app/tool/file_saver.py. The issue is caused by improper access controls, requiring local access to exploit. The advisory notes that the exploit has been disc...

CVE-2025-2954 mannaandpoem OpenManus File file_saver.py execute access control

A vulnerability, which was classified as problematic, was found in mannaandpoem OpenManus up to 2025.3.13. This affects the function execute of the file app/tool/filesaver.py of the component File Handler. The manipulation leads to improper access controls. Local access is required to approach th...

OpenManus 安全漏洞

OpenManus is an application by mannaandpoem individual developers. A security vulnerability exists in OpenManus version 2025.3.13 and earlier, which stems from an improper access control issue in the file handling component...

CVE-2025-2733

A vulnerability classified as critical has been found in mannaandpoem OpenManus up to 2025.3.13. This affects an unknown part of the file app/tool/pythonexecute.py of the component Prompt Handler. The manipulation leads to os command injection. It is possible to initiate the attack remotely. The...

CVE-2025-2733

A vulnerability classified as critical has been found in mannaandpoem OpenManus up to 2025.3.13. This affects an unknown part of the file app/tool/pythonexecute.py of the component Prompt Handler. The manipulation leads to os command injection. It is possible to initiate the attack remotely. The...

Command Injection

Overview openmanus is an Add your description here Affected versions of this package are vulnerable to Command Injection in pythonexecute.py. An attacker can execute arbitrary commands on the system by injecting malicious commands into a prompt. Remediation There is no fixed version for openmanus...

CVE-2025-2733 mannaandpoem OpenManus Prompt python_execute.py os command injection

A vulnerability classified as critical has been found in mannaandpoem OpenManus up to 2025.3.13. This affects an unknown part of the file app/tool/pythonexecute.py of the component Prompt Handler. The manipulation leads to os command injection. It is possible to initiate the attack remotely. The...

CVE-2025-2733 mannaandpoem OpenManus Prompt python_execute.py os command injection

A vulnerability classified as critical has been found in mannaandpoem OpenManus up to 2025.3.13. This affects an unknown part of the file app/tool/pythonexecute.py of the component Prompt Handler. The manipulation leads to os command injection. It is possible to initiate the attack remotely. The...

CVE-2025-2733

CVE-2025-2733 affects mannaandpoem OpenManus up to 2025.3.13. The vulnerability is an OS command injection in the Prompt Handler’s file app/tool/python_execute.py, enabling remote exploitation. Exploitation information is publicly disclosed and the vendor was contacted but did not respond. No rem...

OpenManus 命令注入漏洞

OpenManus is an application by the individual developer of mannaandpoem. A command injection vulnerability exists in OpenManus version 2025.3.13 and earlier, which stems from an os command injection in the app/tool/pythonexecute.py file, which may be attacked remotely...