Lucene search
K

347 matches found

Packet Storm News
Packet Storm News
added 2026/05/10 12:0 a.m.9 views

Skill Description Deception Attack against Task Routing in Internet of Agents

A new paradigm, Internet of Agents IoA, is transforming networked systems into LLM-driven service networks, where heterogeneous agents collaborate through task routing based on their self-declared skill descriptions. Although this promising paradigm enables agentic, distributed, and advanced...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/10 12:0 a.m.8 views

Trust Me, Import This: Dependency Steering Attacks Via Malicious Agent Skills

LLM-powered coding agents increasingly make software supply chain decisions. They generate imports, recommend packages, and write installation commands. Prior work showed that these systems can hallucinate non-existent package names, which attackers may register as malicious packages. In this...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/10 12:0 a.m.13 views

PT-2026-39463

A vulnerability was detected in 8421bit MiniClaw 0.8.0/0.9.0. This issue affects the function resolveSkillScriptPath of the file src/kernel.ts of the component System Command Handler. The manipulation results in os command injection. The exploit is now public and may be used. The patch is...

5.5CVSS5.7AI score0.01387EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/05/10 12:0 a.m.11 views

MiniClaw 命令注入漏洞

MiniClaw is an AI memory and evolution tool developed by a personal developer. Versions 0.8.0 and 0.9.0 of MiniClaw contain command injection vulnerabilities. These vulnerabilities stem from the function resolveSkillScriptPath in the System Command Handler component’s src/kernel.ts file, which...

5.5CVSS6.1AI score0.01387EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.39 views

MiniClaw 路径遍历漏洞

MiniClaw is an AI memory and evolution tool developed by a 8421bit individual developer. MiniClaw has a path traversal vulnerability, which stems from the function isPathInside in the executeSkillScript component’s src/kernel.ts file. This vulnerability may lead to path traversal attacks...

6.5CVSS5.8AI score0.00413EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/05/05 9:15 p.m.11 views

@evomap/evolver: Path Traversal in `evolver fetch` default-branch `safeId` allows Hub-controlled overwrite of project files (RCE)

Summary The evolver fetch subcommand in index.js writes Hub-supplied bundledfiles into a directory derived from a Hub-supplied skillid. When --out is not used, the path-sanitizing regex permits . characters, allowing a skillid of .. to escape the skills/ subdirectory and resolve to the user's...

6.4AI score
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/04 4:47 p.m.9 views

EUVD-2026-27007

Evolver is a GEP-powered self-evolving engine for AI agents. Prior to version 1.69.3, a path traversal vulnerability in the skill download fetch command allows attackers to write files to arbitrary locations on the filesystem. The --out= flag accepts user-provided paths without validation, enabli...

8.1CVSS5.9AI score0.00567EPSS
Exploits0References2
NVD
NVD
added 2026/05/01 9:16 p.m.5 views

CVE-2026-7596

A vulnerability has been found in nextlevelbuilder ui-ux-pro-max-skill up to 2.5.0. Affected by this issue is the function data.get of the file .claude/skills/design-system/scripts/generate-slide.py of the component Slide Generator. Such manipulation leads to cross site scripting. The attack may ...

5.3CVSS0.00377EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2026/04/24 3:26 p.m.107 views

coordinated-disclosure

coordinated-disclosure A Claude Code skill + plugin marketpla...

5.6AI score
Exploits0
GithubExploit
GithubExploit
added 2026/04/15 7:56 a.m.113 views

vuln-poc-generate-skill

vuln-poc-generate-skill A Codex skill project for generating...

6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/10 12:0 a.m.4 views

BadSkill: Backdoor Attacks on Agent Skills Via Model-In-Skill Poisoning

Agent ecosystems increasingly rely on installable skills to extend functionality, and some skills bundle learned model artifacts as part of their execution logic. This creates a supply-chain risk that is not captured by prompt injection or ordinary plugin misuse: a third-party skill may appear...

5.9AI score
Exploits0
Cvelist
Cvelist
added 2026/04/09 9:21 p.m.19 views

CVE-2026-40117 PraisonAIAgents Affected by Arbitrary File Read via read_skill_file Missing Workspace Boundary and Approval Gate

PraisonAIAgents is a multi-agent teams system. Prior to 1.5.128, readskillfile in skilltools.py allows reading arbitrary files from the filesystem by accepting an unrestricted skillpath parameter. Unlike filetools.readfile which enforces workspace boundary confinement, and unlike runskillscript...

6.2CVSS0.00234EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/09 9:21 p.m.1 views

CVE-2026-40117 PraisonAIAgents Affected by Arbitrary File Read via read_skill_file Missing Workspace Boundary and Approval Gate

PraisonAIAgents is a multi-agent teams system. Prior to 1.5.128, readskillfile in skilltools.py allows reading arbitrary files from the filesystem by accepting an unrestricted skillpath parameter. Unlike filetools.readfile which enforces workspace boundary confinement, and unlike runskillscript...

6.2CVSS5.9AI score0.00234EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.7 views

PraisonAI 安全漏洞

PraisonAI is a low-code multi-agent collaboration framework developed by Mervin Praison. Versions of PraisonAI prior to 1.5.128 contained security vulnerabilities. These vulnerabilities stemmed from the readskillfile function accepting an unlimited skillpath parameter, which could allow agents to...

7.5CVSS5.8AI score0.00234EPSS
Exploits1References1
Packet Storm News
Packet Storm News
added 2026/04/08 12:0 a.m.3 views

SkillTrojan: Backdoor Attacks on Skill-Based Agent Systems

Skill-based agent systems tackle complex tasks by composing reusable skills, improving modularity and scalability while introducing a largely unexamined security attack surface. We propose SkillTrojan, a backdoor attack that targets skill implementations rather than model parameters or training...

6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/06 10:57 a.m.5 views

CVE-2026-22661

prompts.chat prior to commit 0f8d4c3 contains a path traversal vulnerability in skill file handling that allows attackers to write arbitrary files to the client system by crafting malicious ZIP archives with unsanitized filenames containing path traversal sequences. Attackers can exploit missing...

8.6CVSS6AI score0.00363EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/03 9:31 p.m.3 views

EUVD-2026-18821

prompts.chat prior to commit 0f8d4c3 contains a path traversal vulnerability in skill file handling that allows attackers to write arbitrary files to the client system by crafting malicious ZIP archives with unsanitized filenames containing path traversal sequences. Attackers can exploit missing...

8.6CVSS6.2AI score0.00363EPSS
Exploits0References4
NVD
NVD
added 2026/04/03 9:17 p.m.6 views

CVE-2026-22661

prompts.chat prior to commit 0f8d4c3 contains a path traversal vulnerability in skill file handling that allows attackers to write arbitrary files to the client system by crafting malicious ZIP archives with unsanitized filenames containing path traversal sequences. Attackers can exploit missing...

8.6CVSS0.00363EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/03 8:26 p.m.18 views

CVE-2026-22661 prompts.chat Path Traversal via Skill File Handling

prompts.chat prior to commit 0f8d4c3 contains a path traversal vulnerability in skill file handling that allows attackers to write arbitrary files to the client system by crafting malicious ZIP archives with unsanitized filenames containing path traversal sequences. Attackers can exploit missing...

8.6CVSS0.00363EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/03 8:26 p.m.2 views

CVE-2026-22661

prompts.chat prior to commit 0f8d4c3 contains a path traversal vulnerability in skill file handling that allows attackers to write arbitrary files to the client system by crafting malicious ZIP archives with unsanitized filenames containing path traversal sequences. Attackers can exploit missing...

8.6CVSS6AI score0.00363EPSS
Exploits0References4
Rows per page
Query Builder