Eric-Z

**Name of the Vulnerable Software and Affected Versions** calcom cal.diy versions prior to 4.9.5 **Description** An information disclosure issue exists in the Generic React API component. The problem resides in the `getServerSideProps()` function within the file `apps/web/modules/bookings/views/bookings-single-view.getServerSideProps.tsx`. A remote attacker can trigger this by manipulating the `cancelledBy` or `rescheduledBy` arguments. **Recommendations** Update to a version later than 4.9.4. As a temporary workaround, restrict access to the `getServerSideProps()` function in the affected file to minimize the risk of information disclosure.

**Name of the Vulnerable Software and Affected Versions** calcom cal.diy versions prior to 4.9.5 **Description** A flaw in the Logo API component allows for server-side request forgery (SSRF), a condition where an attacker can induce the server to make requests to an unintended location. The issue resides in the `validateUrlForSSRF()` function within the `apps/web/app/api/logo/route.ts` file. This attack can be launched remotely, although it is characterized as highly complex and difficult to exploit. **Recommendations** Update to a version later than 4.9.4. As a temporary workaround, restrict access to the `validateUrlForSSRF()` function in the Logo API to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** calcom cal.diy versions prior to 4.9.5 **Description** A cross-site request forgery (CSRF) issue exists in an unknown function, allowing a remote attacker to initiate an attack. CSRF is a type of attack that tricks a victim into performing actions they did not intend to do on a web application where they are currently authenticated. **Recommendations** Update to a version newer than 4.9.4.

**Name of the Vulnerable Software and Affected Versions** Tencent WeKnora versions prior to 0.3.7 **Description** An authorization bypass exists in the Config API Endpoint. Remote attackers can exploit this by manipulating the `kbId` argument within the `getKnowledgeBaseForInitialization()` function located in the internal/handler/initialization.go file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TransformerOptimus SuperAGI versions prior to 0.0.15 **Description** An authorization bypass exists in the Agent Execution Endpoint. A remote attacker can manipulate the `agent execution id` argument within the `get agent execution()` and `update agent execution()` functions located in the superagi/controllers/agent execution.py file to bypass authorization controls. **Recommendations** Update to a version newer than 0.0.14. As a temporary workaround, restrict access to the `get agent execution()` and `update agent execution()` functions to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** TransformerOptimus SuperAGI versions prior to 0.0.15 **Description** A flaw in the `get project()`, `update project()`, and `get projects organisation()` functions within the `superagi/controllers/project.py` file allows for a remote authorization bypass. This occurs when an attacker manipulates requests to bypass security checks. **Recommendations** Update to a version later than 0.0.14. As a temporary workaround, restrict access to the `get project()`, `update project()`, and `get projects organisation()` functions until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** TransformerOptimus SuperAGI versions prior to 0.0.15 **Description** Remote authorization bypass occurs due to the manipulation of the `agent id` argument. This issue affects the functions `delete agent()`, `stop schedule()`, and `get schedule data()` within the file 'superagi/controllers/agent.py'. **Recommendations** Update to a version later than 0.0.14. As a temporary workaround, restrict access to the functions `delete agent()`, `stop schedule()`, and `get schedule data()` to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** TransformerOptimus SuperAGI versions prior to 0.0.15 **Description** An authorization bypass exists in the Organisation Update Endpoint. Manipulation of the `organisation id` argument within the `update organisation()` function in the file superagi/controllers/organisation.py allows a remote attacker to bypass authorization controls. **Recommendations** Update to a version newer than 0.0.14. As a temporary workaround, restrict access to the `update organisation()` function until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** TransformerOptimus SuperAGI versions prior to 0.0.15 **Description** A flaw in the Vector Database Management Endpoint allows remote attackers to bypass authentication. The issue exists within the `get vector db details()` function located in the `superagi/controllers/vector dbs.py` file. **Recommendations** Update to a version newer than 0.0.14. As a temporary workaround, restrict access to the `get vector db details()` function to minimize the risk of exploitation.

A vulnerability has been found in TransformerOptimus SuperAGI up to 0.0.14. This affects the function delete api key/edit api key of the file superagi/controllers/api key.py of the component API Key Management Endpoint. The manipulation leads to authorization bypass. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

**Name of the Vulnerable Software and Affected Versions** TransformerOptimus SuperAGI versions prior to 0.0.15 **Description** An authorization bypass exists in the User Update Endpoint within the `update user()` function of the `superagi/controllers/user.py` file. A remote attacker can manipulate the `user id` argument to bypass authorization controls. **Recommendations** Update to a version later than 0.0.14. As a temporary workaround, restrict access to the `user id` argument in the User Update Endpoint.

**Name of the Vulnerable Software and Affected Versions** TransformerOptimus SuperAGI versions prior to 0.0.15 **Description** An authorization bypass exists in the Budget Endpoint component. The issue is located within the `get budget()` and `update budget()` functions of the file superagi/controllers/budget.py, allowing a remote attacker to bypass authorization controls. **Recommendations** Update to a version newer than 0.0.14. As a temporary workaround, restrict access to the `get budget()` and `update budget()` functions until a patch is applied.

A flaw has been found in OpenBMB XAgent 1.0.0. The impacted element is the function FunctionHandler.handle tool call of the file XAgent/function handler.py of the component API Key Handler. This manipulation of the argument api key causes sensitive information in log files. The attack may be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

**Name of the Vulnerable Software and Affected Versions** letta-ai letta version 0.16.4 **Description** A flaw exists in the `resolve type` function within the `letta/functions/ast parsers.py` file. This issue involves improper neutralization of directives in dynamically evaluated code, potentially allowing for remote exploitation. The exploit is publicly available. The vendor was notified but did not respond. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

A security vulnerability has been detected in letta-ai letta 0.16.4. This vulnerability affects the function convert message create to message of the file letta/helpers/message helper.py of the component File URL Handler. Such manipulation of the argument ImageContent leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

**Name of the Vulnerable Software and Affected Versions** huggingface smolagents version 1.25.0.dev0 **Description** A code injection flaw allows remote attackers to execute arbitrary code. The issue resides in the `evaluate augassign()`, `evaluate call()`, and `evaluate with()` functions within the `src/smolagents/local python executor.py` file. **Recommendations** As a temporary workaround, consider restricting the use of the `evaluate augassign()`, `evaluate call()`, and `evaluate with()` functions in the `src/smolagents/local python executor.py` file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

A vulnerability was found in OpenBMB XAgent 1.0.0. This impacts the function check user of the file XAgentServer/application/websockets/share.py of the component ShareServer WebSocket Endpoint. Performing a manipulation of the argument interaction id results in missing authentication. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability has been found in OpenBMB XAgent 1.0.0. This affects the function ReplayServer.on connect/ReplayServer.send data of the file XAgentServer/application/websockets/replayer.py of the component WebSocket Endpoint. Such manipulation of the argument interaction id leads to authorization bypass. The attack may be launched remotely. Attacks of this nature are highly complex. The exploitability is reported as difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.