3 matches found
PT-2023-24018
Name of the Vulnerable Software and Affected Versions Langchain versions 0.0.155 and earlier Langchain versions prior to 0.0.247 Description The issue allows for prompt injection, enabling the execution of arbitrary code against the SQL service provided by the chain. Recommendations For Langchain...
GHSA-FJ32-Q626-PJJC LangChain vulnerable to arbitrary code execution
An issue in LangChain prior to v.0.0.247 allows a remote attacker to execute arbitrary code via the prompt parameter...
CVE-2023-36189
SQL injection vulnerability in langchain before v0.0.247 allows a remote attacker to obtain sensitive information via the SQLDatabaseChain component...