Eric-D

**Name of the Vulnerable Software and Affected Versions** Kilo-Org kilocode versions prior to 7.0.48 **Description** A flaw in the Environment Variable Handler component allows remote information disclosure. The issue exists within the `Load()` function located in the `packages/opencode/src/config/config.ts` file. An attacker can trigger this by manipulating the `KILO CONFIG CONTENT` argument. **Recommendations** Update to a version newer than 7.0.47. As a temporary workaround, restrict or monitor the use of the `KILO CONFIG CONTENT` argument to minimize the risk of information disclosure.

**Name of the Vulnerable Software and Affected Versions** Kilo-Org kilocode versions prior to 7.0.48 **Description** A path traversal issue exists in the File Diff API Endpoint within the `Bun.file` function of the `packages/opencode/src/kilocode/review/worktree-diff.ts` file. A remote attacker can trigger this by manipulating the `File` argument. **Recommendations** Update to a version later than 7.0.47. As a temporary workaround, restrict access to the `Bun.file` function in the File Diff API Endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** vercel ai versions prior to 3.0.98 **Description** An OS command injection issue exists in the PR Branch Name Interpolation component. The flaw is located within the `run()` function of the `.github/workflows/prettier-on-automerge.yml` file. This allows a remote attacker to execute arbitrary operating system commands, although the attack complexity is high and exploitability is considered difficult. **Recommendations** Update to a version later than 3.0.97. As a temporary workaround, restrict access to or disable the `run()` function in the `.github/workflows/prettier-on-automerge.yml` file.

A vulnerability was detected in inkeep agents 0.58.14. This vulnerability affects the function createDevContext of the file agents-api/src/middleware/runAuth.ts of the component runAuth Middleware. Performing a manipulation results in authentication bypass using alternate channel. The attack is possible to be carried out remotely. The exploit is now public and may be used. The project was informed of the problem early through an issue report but has not responded yet.

**Name of the Vulnerable Software and Affected Versions** langflow-ai langflow versions prior to 1.1.1 **Description** An unrestricted file upload flaw exists in the API Endpoint component. The issue is located in the `create upload file()` function within the file 'src/backend/base/Langflow/api/v1/endpoints.py'. This allows a remote attacker to upload files without proper restrictions. Over 2,900 internet-facing instances have been identified as potentially exposed. **Recommendations** Update to a version later than 1.1.0. As a temporary workaround, restrict access to the `create upload file()` function until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** langflow-ai langflow versions prior to 1.8.4 **Description** A weakness in the Flow Using API component allows for the unprotected storage of credentials. This issue occurs within the `remove api keys/has api terms` function located in the 'src/backend/base/langflow/api/utils/core.py' file. The flaw can be triggered remotely. **Recommendations** Update to a version newer than 1.8.3. As a temporary workaround, restrict access to the `remove api keys/has api terms` function to minimize the risk of credential exposure.

**Name of the Vulnerable Software and Affected Versions** FoundationAgents MetaGPT versions up to 0.8.1 **Description** A security flaw exists in FoundationAgents MetaGPT versions up to 0.8.1. The `decode image` function within the `metagpt/utils/common.py` file is susceptible to server-side request forgery (SSRF) through manipulation of the `img url or b64` argument. This allows for remote attacks. The exploit is publicly available. The project was notified of the issue but has not yet responded. **Recommendations** Update FoundationAgents MetaGPT to a version newer than 0.8.1.

Name of the Vulnerable Software and Affected Versions FoundationAgents MetaGPT versions up to 0.8.1 Description A code injection issue exists in FoundationAgents MetaGPT up to version 0.8.1. The issue is located in the `generate thoughts` function within the `metagpt/strategy/tot.py` file of the Tree-of-Thought Solver component. Remote attackers can exploit this issue. The exploit is publicly available. Recommendations Update to a version beyond 0.8.1.

Name of the Vulnerable Software and Affected Versions FoundationAgents MetaGPT versions up to 0.8.1 Description A cross-site request forgery issue exists in FoundationAgents MetaGPT up to version 0.8.1. The issue is located in the `evaluateCode` function of the `metagpt/environment/minecraft/mineflayer/index.js` file within the Mineflayer HTTP API component. The attack can be performed remotely and has been publicly disclosed. Recommendations Update FoundationAgents MetaGPT to a version later than 0.8.1.

Name of the Vulnerable Software and Affected Versions FoundationAgents MetaGPT versions up to 0.8.1 Description A flaw exists in FoundationAgents MetaGPT up to version 0.8.1 due to an os command injection issue within the `Bash.run` function located in the `metagpt/tools/libs/terminal.py` library. This issue is remotely exploitable. Recommendations Update FoundationAgents MetaGPT to a version later than 0.8.1.

Name of the Vulnerable Software and Affected Versions FoundationAgents MetaGPT versions up to 0.8.1 Description A flaw exists in the `get mime type` function within the `metagpt/utils/common.py` file. This allows for operating system command injection, potentially enabling remote execution of commands. The details of the issue have been publicly disclosed. Recommendations Update to a version beyond 0.8.1