| Title | OpenManus 2025.3.13 OS Command Injection |
|---|
| Description | Command Execution in Openmanus ≤ 2025.3.13, when users use prompt contains shell command, such as “ls /tmp”,the server will generate a txt including all the file in /tmp |
|---|
| Source | ⚠️ https://magnificent-dill-351.notion.site/Command-Execution-in-Openmanus-2025-3-13-1b6c693918ed80b2826ef6bb385693fa |
|---|
| User | s0l42 (UID 82389) |
|---|
| Submission | 03/14/2025 07:40 AM (2 months ago) |
|---|
| Moderation | 03/24/2025 02:02 PM (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB Entry | 300753 [mannaandpoem OpenManus up to 2025.3.13 Prompt python_execute.py os command injection] |
|---|
| Points | 12 |
|---|