Ybdesire

A vulnerability was determined in lharries whatsapp-mcp 0.0.1. Affected by this vulnerability is the function SendMessageRequest of the file whatsapp-bridge/main.go of the component Send API Endpoint. This manipulation of the argument mediaPath causes path traversal. The exploit has been publicly disclosed and may be utilized. Patch name: 6657cdceadd361e8fbe824afe9d00b4504009a5d. It is recommended to apply a patch to fix this issue.

**Name of the Vulnerable Software and Affected Versions** Enderfga claw-orchestrator versions prior to 3.7.1 **Description** A remote attack is possible in the Session Grep Endpoint component due to inefficient regular expression complexity. The issue exists within the `validateRegex()` function located in the `claw-orchestrator/src/embedded-server.ts` file, where manipulation of the `body.pattern` variable can be exploited. **Recommendations** Upgrade to version 3.7.1. As a temporary workaround, restrict access to the `validateRegex()` function to minimize the risk of exploitation.

A weakness has been identified in Enderfga claw-orchestrator up to 3.5.5. This affects the function EmbeddedServer of the file src/embedded-server.ts of the component API Endpoint. This manipulation causes missing authentication. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks. Upgrading to version 3.5.6 mitigates this issue. Patch name: d0b02a800aa0689d9428cc4cc170e0b6589fb2c3. The affected component should be upgraded.

A vulnerability was determined in haojing8312 WorkClaw up to 0.6.4. This affects the function is dangerous of the file apps/runtime/src-tauri/src/agent/tools/bash.rs of the component Blacklist Handler. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.

**Name of the Vulnerable Software and Affected Versions** FoundDream miniclawd versions prior to 2d65665046e2222eeea76cafc8570ed546a8c125 **Description** A command injection issue exists in the `SkillsLoader` component within the file `/src/application/skills-loader.ts`. A remote attacker can trigger this by manipulating the `requires.bins` argument in the `which()` function. Command injection is a flaw that allows an attacker to execute arbitrary operating system commands on the server. **Recommendations** Update to a version later than 2d65665046e2222eeea76cafc8570ed546a8c125. As a temporary workaround, restrict or disable the use of the `which()` function in the `SkillsLoader` component to prevent the manipulation of the `requires.bins` argument.

**Name of the Vulnerable Software and Affected Versions** FoundDream miniclawd versions prior to 2d65665046e2222eeea76cafc8570ed546a8c125 **Description** A remote OS command injection can occur via the `ExecTool.execute()` function located in the `/src/tools/exec.ts` file. OS command injection is a flaw that allows an attacker to execute arbitrary operating system commands on the server. **Recommendations** Update to a version later than 2d65665046e2222eeea76cafc8570ed546a8c125. As a temporary workaround, consider restricting access to the `ExecTool.execute()` function until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** 8421bit MiniClaw versions 0.8.0 through 0.9.0 **Description** An OS command injection issue exists within the System Command Handler component. The flaw is located in the `resolveSkillScriptPath()` function of the `src/kernel.ts` file, where improper manipulation allows for the execution of arbitrary operating system commands. **Recommendations** Apply patch 223c16a1088e138838dcbd18cd65a37c35ac5a84 for versions 0.8.0 through 0.9.0. As a temporary workaround, restrict access to the `resolveSkillScriptPath()` function to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** 8421bit MiniClaw versions prior to e8bd4e17e9428260f2161378356affc5ce90d6ed **Description** A path traversal issue exists in the `executeSkillScript` component within the `isPathInside()` function of the `src/kernel.ts` file. This flaw allows a remote attacker to perform a manipulation that leads to unauthorized access to files or directories outside the intended folder. **Recommendations** Apply patch e8bd4e17e9428260f2161378356affc5ce90d6ed. As a temporary workaround, restrict the use of the `executeSkillScript` component or the `isPathInside()` function until the patch is implemented.

**Name of the Vulnerable Software and Affected Versions** 8421bit MiniClaw versions up to 223c16a1088e138838dcbd18cd65a37c35ac5a84 **Description** Remote OS command injection can occur via the `executeCognitivePulse()` function located in the `src/kernel.ts` file. This allows a remote attacker to execute arbitrary operating system commands through manipulation of the function. **Recommendations** Deploy patch 028f62216dee9f64833d0f1cfda7c217067ceba8 for versions up to 223c16a1088e138838dcbd18cd65a37c35ac5a84. As a temporary workaround, restrict access to the `executeCognitivePulse()` function to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions Zod jsVideoUrlParser versions up to 0.5.1 Description A weakness exists in Zod jsVideoUrlParser up to version 0.5.1. The issue is related to inefficient regular expression complexity caused by manipulation of the `timestamp` argument within the `getTime` function in the `lib/util.js` library. This can be initiated remotely. The exploit is publicly available. Recommendations Update to a version beyond 0.5.1.

**Name of the Vulnerable Software and Affected Versions** pygments versions up to 2.19.2 **Description** A security flaw exists in pygments. The issue resides within the `AdlLexer` function located in the `pygments/lexers/archetype.py` file, leading to inefficient regular expression complexity. This manipulation is only exploitable with local access. The exploit has been publicly released. The project was notified of the issue but has not yet responded. **Recommendations** Versions prior to 2.19.2 should be updated. As a temporary workaround, consider restricting access to the `AdlLexer` function until a patch is available.

Name of the Vulnerable Software and Affected Versions: coldfunction qCUDA up to db0085400c2f2011eed46fbc04fdc0873141688e Description: A vulnerability was found in the function `qcow make empty` of the file `qCUDA/qcu-device/block/qcow.c`. The manipulation of the argument `s->l1 size` leads to integer overflow. The attack needs to be approached locally. Recommendations: For coldfunction qCUDA up to db0085400c2f2011eed46fbc04fdc0873141688e, as a temporary workaround, consider restricting the use of the `qcow make empty` function until a fix is available. Additionally, be cautious when handling the `s->l1 size` argument to minimize the risk of integer overflow. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: HobbesOSR Kitten versions up to c4f8b7c3158983d1020af432be1b417b28686736 Description: A critical issue was found, affecting the function `set pte at` in the library `/include/arch-arm64/pgtable.h`. This issue leads to resource consumption. Recommendations: As a temporary workaround, consider disabling the `set pte at` function until a fix is available. Restrict access to the library `/include/arch-arm64/pgtable.h` to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** letta-ai letta versions up to 0.4.1 **Description** A critical issue has been found in the function `function message` of the file letta/letta/interface.py. The manipulation of the argument `function name`/`function args` leads to improper neutralization of directives in dynamically evaluated code. The exploit has been disclosed to the public and may be used. **Recommendations** For versions up to 0.4.1, as a temporary workaround, consider disabling the `function message` function until a patch is available. Restrict access to the `letta/letta/interface.py` file to minimize the risk of exploitation. Avoid using the `function name` and `function args` arguments in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** uYanki board-stm32f103rc-berial (affected versions not specified) **Description** A critical vulnerability was found in the uYanki board-stm32f103rc-berial. This issue affects the `heartrate1 i2c hal write` function in the file `heartrate1 hal.c`. The manipulation of the `num` argument leads to a stack-based buffer overflow. The product uses continuous delivery with rolling releases, so no specific version details of affected or updated releases are available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HumanSignal label-studio-ml-backend versions up to 9fb7f4aa186612806af2becfb621f6ed8d9fdbaf **Description** A vulnerability has been found in the function load of the file label-studio-ml-backend/label studio ml/examples/yolo/utils/neural nets.py of the component PT File Handler. The manipulation of the argument path leads to deserialization. An attack has to be approached locally. This product takes the approach of rolling releases to provide continuous delivery. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** defog-ai introspect versions up to 0.1.4 **Description** A critical vulnerability has been found in defog-ai introspect. This issue affects the `execute analysis code safely` function of the file `introspect/backend/tools/analysis tools.py`. The manipulation of the `code` argument leads to code injection. It is possible to launch the attack on the local host. **Recommendations** For defog-ai introspect versions up to 0.1.4, apply the patch named 502 to fix this issue. As a temporary workaround, consider disabling the `execute analysis code safely` function until the patch is applied. Note that running this repository in a docker environment will significantly mitigate potential security risks.

**Name of the Vulnerable Software and Affected Versions** FunAudioLLM InspireMusic up to bf32364bcb0d136497ca69f9db622e9216b029dd **Description** A critical issue was found in the function `load state dict` of the file `inspiremusic/cli/model.py` of the component Pickle Data Handler. This issue leads to deserialization and can be exploited locally. **Recommendations** Apply the patch 784cbf8dde2cf1456ff808aeba23177e1810e7a9 to fix this issue. As a temporary workaround, consider disabling the `load state dict` function until the patch is applied.

Name of the Vulnerable Software and Affected Versions: defog-ai introspect versions up to 0.1.4 Description: A critical issue affects the function `test custom tool` of the file `introspect/backend/integration routes.py` of the component Test Endpoint. The manipulation of the argument `input model` leads to code injection. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. Recommendations: For defog-ai introspect versions up to 0.1.4, consider disabling the `test custom tool` function until a patch is available. Restrict access to the `introspect/backend/integration routes.py` file to minimize the risk of exploitation. Avoid using the `input model` argument in the affected Test Endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: XU-YIJIE grpo-flat up to 9024b43f091e2eb9bac65802b120c0b35f9ba856 Description: A vulnerability has been found in the function `main` of the file `grpo vanilla.py`. The manipulation leads to deserialization. Local access is required to approach this attack. The product uses continuous delivery with rolling releases, so no version details of affected or updated releases are available. Recommendations: For XU-YIJIE grpo-flat up to 9024b43f091e2eb9bac65802b120c0b35f9ba856, as a temporary workaround, consider restricting access to the `main` function in the `grpo vanilla.py` file until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.