Lucene search
K

4 matches found

EUVD
EUVD
added 2026/02/26 1:38 a.m.7 views

EUVD-2026-8814

Agenta is an open-source LLMOps platform. In Agenta-API prior to version 0.48.1, a Python sandbox escape vulnerability existed in Agenta's custom code evaluator. Agenta used RestrictedPython as a sandboxing mechanism for user-supplied evaluator code, but incorrectly whitelisted the numpy package ...

8.8CVSS6.3AI score0.00497EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/26 12:0 a.m.6 views

PT-2026-22102

Name of the Vulnerable Software and Affected Versions Agenta-API versions prior to 0.48.1 Description Agenta is an open-source LLMOps platform. In Agenta-API versions prior to 0.48.1, a Python sandbox escape existed in Agenta's custom code evaluator. The platform used RestrictedPython as a...

9.9CVSS6.5AI score0.00497EPSS
Exploits1References12
Node.js
Node.js
added 2021/02/23 2:2 a.m.69 views

Remote Code Execution

Overview Affected versions of angular-expressions are affected by a remote code execution vulnerability. Impact If you call expressions.compileuserControlledInput where userControlledInput is text that comes from user input you are potentially impacted. The security of the package could be bypass...

6.5CVSS3.5AI score0.0273EPSS
Exploits0Affected Software1
Github Security Blog
Github Security Blog
added 2020/01/24 3:27 p.m.81 views

Remote Code Execution in Angular Expressions

Impact The vulnerability, reported by GoSecure Inc, allows Remote Code Execution, if you call expressions.compileuserControlledInput where userControlledInput is text that comes from user input. If running angular-expressions in the browser, an attacker could run any browser script when the...

8.8CVSS3.1AI score0.02393EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder