VulnerableCode Package Details - pkg:pypi/langroid@0.53.4

Search for packages

Vulnerability	Summary	Fixed by
VCID-4nk5-2k31-ykcj Aliases: CVE-2025-46725 GHSA-22c2-9gwg-mj59	Langroid is a Python framework to build large language model (LLM)-powered applications. Prior to version 0.53.15, `LanceDocChatAgent` uses pandas eval() through `compute_from_docs()`. As a result, an attacker may be able to make the agent run malicious commands through `QueryPlan.dataframe_calc]`) compromising the host system. Langroid 0.53.15 sanitizes input to the affected function by default to tackle the most common attack vectors, and added several warnings about the risky behavior in the project documentation.	0.53.15 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-9b7t-pn12-67f1 Aliases: CVE-2025-46724 GHSA-jqq5-wc57-f8hj	Langroid is a Python framework to build large language model (LLM)-powered applications. Prior to version 0.53.15, `TableChatAgent` uses `pandas eval()`. If fed by untrusted user input, like the case of a public-facing LLM application, it may be vulnerable to code injection. Langroid 0.53.15 sanitizes input to `TableChatAgent` by default to tackle the most common attack vectors, and added several warnings about the risky behavior in the project documentation.	0.53.15 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-mqhm-ak45-9udn Aliases: CVE-2026-25481 GHSA-x34r-63hx-w57f	Langroid is a framework for building large-language-model-powered applications. Prior to version 0.59.32, there is a bypass to the fix for CVE-2025-46724. TableChatAgent can call pandas_eval tool to evaluate the expression. There is a WAF in langroid/utils/pandas_utils.py introduced to block code injection CVE-2025-46724. However it can be bypassed due to _literal_ok() returning False instead of raising UnsafeCommandError on invalid input, combined with unrestricted access to dangerous dunder attributes (__init__, __globals__, __builtins__). This allows chaining whitelisted DataFrame methods to leak the eval builtin and execute arbitrary code. This issue has been patched in version 0.59.32.	0.59.32 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-4nk5-2k31-ykcj
Aliases:
CVE-2025-46725
GHSA-22c2-9gwg-mj59

Langroid is a Python framework to build large language model (LLM)-powered applications. Prior to version 0.53.15, `LanceDocChatAgent` uses pandas eval() through `compute_from_docs()`. As a result, an attacker may be able to make the agent run malicious commands through `QueryPlan.dataframe_calc]`) compromising the host system. Langroid 0.53.15 sanitizes input to the affected function by default to tackle the most common attack vectors, and added several warnings about the risky behavior in the project documentation.

0.53.15
Affected by 1 other vulnerability.

VCID-9b7t-pn12-67f1
Aliases:
CVE-2025-46724
GHSA-jqq5-wc57-f8hj

Langroid is a Python framework to build large language model (LLM)-powered applications. Prior to version 0.53.15, `TableChatAgent` uses `pandas eval()`. If fed by untrusted user input, like the case of a public-facing LLM application, it may be vulnerable to code injection. Langroid 0.53.15 sanitizes input to `TableChatAgent` by default to tackle the most common attack vectors, and added several warnings about the risky behavior in the project documentation.

0.53.15
Affected by 1 other vulnerability.

VCID-mqhm-ak45-9udn
Aliases:
CVE-2026-25481
GHSA-x34r-63hx-w57f

Langroid is a framework for building large-language-model-powered applications. Prior to version 0.59.32, there is a bypass to the fix for CVE-2025-46724. TableChatAgent can call pandas_eval tool to evaluate the expression. There is a WAF in langroid/utils/pandas_utils.py introduced to block code injection CVE-2025-46724. However it can be bypassed due to _literal_ok() returning False instead of raising UnsafeCommandError on invalid input, combined with unrestricted access to dangerous dunder attributes (__init__, __globals__, __builtins__). This allows chaining whitelisted DataFrame methods to leak the eval builtin and execute arbitrary code. This issue has been patched in version 0.59.32.

0.59.32
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-mw86-ref9-1uhn		CVE-2025-46726 GHSA-pw95-88fg-3j6f

Vulnerability

Summary

Aliases

VCID-mw86-ref9-1uhn

CVE-2025-46726
GHSA-pw95-88fg-3j6f

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-12T20:54:21.570222+00:00	GitLab Importer	Affected by	VCID-mqhm-ak45-9udn	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/langroid/CVE-2026-25481.yml	38.6.0
2026-06-12T20:02:06.551257+00:00	GitLab Importer	Affected by	VCID-4nk5-2k31-ykcj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/langroid/CVE-2025-46725.yml	38.6.0
2026-06-12T20:02:04.456345+00:00	GitLab Importer	Affected by	VCID-9b7t-pn12-67f1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/langroid/CVE-2025-46724.yml	38.6.0
2026-06-12T20:01:00.502823+00:00	GitLab Importer	Fixing	VCID-mw86-ref9-1uhn	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/langroid/CVE-2025-46726.yml	38.6.0
2026-06-12T07:55:42.474529+00:00	GithubOSV Importer	Fixing	VCID-mw86-ref9-1uhn	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/05/GHSA-pw95-88fg-3j6f/GHSA-pw95-88fg-3j6f.json	38.6.0