CVE-2025-2954

A vulnerability, which was classified as problematic, was found in mannaandpoem OpenManus up to 2025.3.13. This affects the function execute of the file app/tool/filesaver.py of the component File Handler. The manipulation leads to improper access controls. Local access is required to approach th...

CVE-2025-2954

OpenManus (mannaandpoem) up to 2025.3.13 is affected by a vulnerability in the File Handler component, specifically the execute function in app/tool/file_saver.py. The issue is caused by improper access controls, requiring local access to exploit. The advisory notes that the exploit has been disc...

CVE-2025-2733

A vulnerability classified as critical has been found in mannaandpoem OpenManus up to 2025.3.13. This affects an unknown part of the file app/tool/pythonexecute.py of the component Prompt Handler. The manipulation leads to os command injection. It is possible to initiate the attack remotely. The...

CVE-2025-2733 mannaandpoem OpenManus Prompt python_execute.py os command injection

A vulnerability classified as critical has been found in mannaandpoem OpenManus up to 2025.3.13. This affects an unknown part of the file app/tool/pythonexecute.py of the component Prompt Handler. The manipulation leads to os command injection. It is possible to initiate the attack remotely. The...