pkg:PyPI/langroid

All known vulnerabilities

• CRITICAL9.8CVE-2026-25879Langroid has Prompt to SQL Injection, Leading to RCE
  from 0, < 0.63.0
• CRITICAL9.8CVE-2025-46724Langroid has a Code Injection vulnerability in TableChatAgent
  from 0, < 0.53.15
• —CVE-2026-25481Langroid has WAF Bypass Leading to RCE in TableChatAgent
  from 0, < 0.59.32
• —CVE-2025-46725Langroid has a Code Injection vulnerability in LanceDocChatAgent through vector_store
  from 0, < 0.53.15
• —Langroid Allows XXE Injection via XMLToolMessage
  from 0, < 0.53.4