Michal Gow

**Name of the Vulnerable Software and Affected Versions** Drupal AI (Artificial Intelligence) versions 1.0.0 through 1.0.1 **Description** The issue is a Cross-Site Request Forgery (CSRF) vulnerability, which allows an attacker to perform actions on a user's behalf without their consent. This is a type of attack where an attacker tricks a user into performing unintended actions on a web application that the user is authenticated to. **Recommendations** For versions 1.0.0 through 1.0.1, update to version 1.0.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Drupal AI (Artificial Intelligence) versions 0.0.0 through 1.0.4 **Description** The issue is related to an OS Command Injection vulnerability due to improper neutralization of special elements used in an OS command. This allows for OS Command Injection. **Recommendations** For versions 0.0.0 through 1.0.4, update to version 1.0.5 or later to resolve the issue.