CVE-2026-8319 aiwaves-cn agents cheshire_cat_core stray_cat.py recall_relevant_memories_to_working_memory resource consumption

A weakness has been identified in aiwaves-cn agents up to e8c4e3c2d19739d3dff59e577d1c97090cc15f59. Affected by this issue is the function recallrelevantmemoriestoworkingmemory of the file core/cat/lookingglass/straycat.py of the component cheshirecatcore. This manipulation causes resource...

agents 资源管理错误漏洞

Agents is an open-source intelligent agent symbol learning and training framework developed by AIWaves. There is a resource management vulnerability in aiwaves-cn agents, which stems from the recallrelevantmemoriestoworkingmemory function in the core/cat/lookingglass/straycat.py file within the...

CVE-2026-4996

A vulnerability was identified in Sinaptik AI PandasAI up to 0.1.4. Affected by this issue is the function deletequestionandanswers/deletedocs/updatequestionanswer/updatedocs/getrelevantquestionanswersbyid/getrelevantdocsbyid of the file extensions/ee/vectorstores/lancedb/pandasailancedb/lancedb....

CVE-2026-4996 Sinaptik AI PandasAI pandasai-lancedb Extension lancedb.py get_relevant_docs_by_id sql injection

A vulnerability was identified in Sinaptik AI PandasAI up to 0.1.4. Affected by this issue is the function deletequestionandanswers/deletedocs/updatequestionanswer/updatedocs/getrelevantquestionanswersbyid/getrelevantdocsbyid of the file extensions/ee/vectorstores/lancedb/pandasailancedb/lancedb....

CVE-2026-4996 Sinaptik AI PandasAI pandasai-lancedb Extension lancedb.py get_relevant_docs_by_id sql injection

A vulnerability was identified in Sinaptik AI PandasAI up to 0.1.4. Affected by this issue is the function deletequestionandanswers/deletedocs/updatequestionanswer/updatedocs/getrelevantquestionanswersbyid/getrelevantdocsbyid of the file extensions/ee/vectorstores/lancedb/pandasailancedb/lancedb....

PT-2025-53397

CVE-2023-5093 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2023-5093 Published : Dec. 23, 2025, 2:16 p.m. | 42 minutes ago Description : Rejected reason: This CVE id was assigned to an issue which was later deemed not security relevant. Severity: 0.0 | NA Visit the link for more...

PT-2025-53396

CVE-2023-5092 - Apache HTTP Server XML Entity Injection CVE ID : CVE-2023-5092 Published : Dec. 23, 2025, 2:16 p.m. | 42 minutes ago Description : Rejected reason: This CVE id was assigned to an issue which was later deemed not security relevant. Severity: 0.0 | NA Visit the link for more details...

PT-2025-53398

CVE-2023-5094 - Apache HTTP Server Denial of Service CVE ID : CVE-2023-5094 Published : Dec. 23, 2025, 2:16 p.m. | 42 minutes ago Description : Rejected reason: This CVE id was assigned to an issue which was later deemed not security relevant. Severity: 0.0 | NA Visit the link for more details,...

EUVD-2025-102681

Malicious code in relevantwhitefishz3n npm...

EUVD-2025-89201

Malicious code in relevantguppyz3n npm...

EUVD-2025-74302

Malicious code in relevantaspcopper-76 npm...

EUVD-2025-78461

Malicious code in relevantcentipedez3n npm...

EUVD-2025-78459

Malicious code in relevantmeadowlarkz3n npm...

EUVD-2025-80757

Malicious code in relevanthedgehogdumbs npm...

EUVD-2025-80758

Malicious code in relevantfrog0xrequest npm...

EUVD-2025-74019

Malicious code in relevantwombatz3n npm...

EUVD-2025-74024

Malicious code in relevantgazellez3n npm...

EUVD-2025-74020

Malicious code in relevantswallowrequirement npm...

MAL-2025-96270 Malicious code in relevant_swallow_requirement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e75ea8eb5050a50693db40b965bb4b891b3e83d4daa48cf08b4f75e43ad68654 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-52367

Malicious code in relevant-harlequin-vole npm...