CVE-2026-4500 | bagofwords1 bagofwords up to 0.0.297 code_execution.py generate_df injection (Issue 60)

Inserito da Angelo Barbosa | Mar 20, 2026 | CVE

A vulnerability was found in bagofwords1 bagofwords up to 0.0.297. It has been declared as critical. This impacts the function generate_df of the file backend/app/ai/code_execution/code_execution.py. Such manipulation leads to injection.

This vulnerability is traded as CVE-2026-4500. The attack may be launched remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2026-4500 | bagofwords1 bagofwords up to 0.0.297 code_execution.py generate_df injection (Issue 60)

Post correlati

CVE-2024-6295 | udn News App up to 4.20.0 on Android sensitive information

CVE-2024-29271 | VvvebJs up to 1.7.6 save.php action cross site scripting (Issue 342)

CVE-2024-20046 | MediaTek MT8798 Battery integer overflow (ALPS08485622)

CVE-2024-28298 | BM SOFT BMPlanning 1.0.0.1 /BMServerR.dll/BMRest SEC_IDF/LIE_IDF/PLANF_IDF/CLI_IDF/DOS_IDF sql injection