EUVD-2026-19014

A vulnerability was found in ScrapeGraphAI scrapegraph-ai up to 1.74.0. The affected element is the function createsandboxandexecute of the file scrapegraphai/nodes/generatecodenode.py of the component GenerateCodeNode Component. The manipulation results in os command injection. The attack may be...

CVE-2026-5532

The CVE-2026-5532 entry concerns ScrapeGraphAI scrapegraph-ai (up to version 1.74.0). The vulnerable element is the function create_sandbox_and_execute in scrapegraphai/nodes/generate_code_node.py of the GenerateCodeNode Component, where manipulation leads to an OS command injection. The attack c...

ScrapeGraphAI 操作系统命令注入漏洞

ScrapeGraphAI is an open-source intelligent web scraping library based on large language models. Versions of ScrapeGraphAI 1.74.0 and earlier contain a vulnerability related to operating system command injection, which stems from the createsandboxandexecute function’s ability to execute OS comman...

@debridge-finance/solana-grpc (>=1.1.2 <=1.1.3), @mochi-web3/connect-wallet-widget (>=0.0.7 <=0.2.10) +2 more potentially affected by CVE-2024-30253 via @solana/web3.js (=1.74.0)

@solana/web3.js NPM version =1.74.0 is affected by a known vulnerability. The following packages have a transitive dependency on @solana/web3.js and may be impacted: - @debridge-finance/solana-grpc =1.1.2, =0.0.7, =0.2.2, =1.194.0, =1.261.0 Source cves: CVE-2024-30253 Source advisory:...

PT-2019-11320 · Jenkins · Jenkins Monitoring Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Monitoring Plugin versions 1.74.0 and earlier Description: A denial of service issue exists that allows attackers to kill threads running on the Jenkins master. This is due to a vulnerability in the PluginImpl.java file...