Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2026/05/07 1:49 a.m.14 views

Aegra has cross-user run injection in /threads/{thread_id}/runs (IDOR)

Impact Aegra deployments running 0.9.0 through 0.9.6 with multiple authenticated users on a shared instance are vulnerable to a cross-tenant IDOR. Any authenticated user User A, given another user's threadid User B, can: - Execute graph runs against User B's thread via POST /threads/threadid/runs...

8.6CVSS6.1AI score0.00285EPSS
Exploits0References7Affected Software1
Snyk
Snyk
added 2026/05/07 1:49 a.m.14 views

Authorization Bypass Through User-Controlled Key

Overview aegra-api is an Aegra core API - Self-hosted Agent Protocol server Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key in the POST /threads/threadid/runs, POST /threads/threadid/runs/stream, and POST /threads/threadid/runs/wait endpoints...

8.6CVSS5.9AI score0.00285EPSS
Exploits0References3
NVD
NVD
added 2026/04/29 7:16 p.m.9 views

CVE-2026-7439

AgentFlow's local web API accepts non-JSON content types on POST /api/runs and POST /api/runs/validate endpoints without enforcing application/json validation, allowing attackers to bypass trust-boundary enforcement on sensitive operations. Attackers can exploit this content-type validation...

4.8CVSS0.00089EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/29 6:6 p.m.3 views

CVE-2026-7439

AgentFlow's local web API accepts non-JSON content types on POST /api/runs and POST /api/runs/validate endpoints without enforcing application/json validation, allowing attackers to bypass trust-boundary enforcement on sensitive operations. Attackers can exploit this content-type validation...

4.8CVSS5.3AI score0.00089EPSS
Exploits0References4
Rows per page
Query Builder