CVE-2026-45312 | infiniflow RAGFlow up to 0.24.0 rag/prompts/generator.py special elements used in a template engine

Inserito da Angelo Barbosa | Mag 29, 2026 | CVE

A vulnerability classified as critical was found in infiniflow RAGFlow up to 0.24.0. This issue affects some unknown processing of the file rag/prompts/generator.py. The manipulation results in improper neutralization of special elements used in a template engine.

This vulnerability is identified as CVE-2026-45312. The attack can be executed remotely. There is not any exploit available.

CVE-2026-45312 | infiniflow RAGFlow up to 0.24.0 rag/prompts/generator.py special elements used in a template engine

Post correlati

CVE-2023-51780 | Linux Kernel up to 6.6.7 net/atm/ioctl.c do_vcc_ioctl use after free

CVE-2024-7579 | Alien Technology ALR-F800 up to 19.10.24.00 File Name upgrade.cgi popen uploadedFile os command injection

CVE-2026-2741 | Vaadin Flow up to 14.14.0/23.6.6/24.9.8/25.0.2 ZIP Node.js path traversal

CVE-2026-3137 | CodeAstro Food Ordering System 1.0 food_ordering.exe stack-based overflow