| Titel | composiohq composio <=0.5.6 Composio's Local tools Mathematical has a code injection |
|---|
| Beschreibung | In the Calculator class, there is no restriction on user request inputs, which could allow malicious code to be injected and executed within the eval function |
|---|
| Quelle | ⚠️ https://rumbling-slice-eb0.notion.site/Composio-s-Local-tools-Mathematical-has-a-code-injection-risk-in-composiohq-composio-ea0e89ee10fe4edfb9a8cfeed158c765?pvs=4 |
|---|
| Benutzer | aftersnow (UID 71336) |
|---|
| Einreichung | 05.09.2024 14:30 (vor 2 Jahren) |
|---|
| Moderieren | 14.09.2024 07:56 (9 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 277501 [composiohq composio bis 0.5.6 calculator.py Calculator erweiterte Rechte] |
|---|
| Punkte | 12 |
|---|