Medium severity6.3NVD Advisory· Published Oct 8, 2025· Updated Apr 29, 2026
CVE-2025-11445
CVE-2025-11445
Description
A vulnerability was detected in Kilo Code up to 4.86.0. Affected is the function ClineProvider of the file src/core/webview/ClineProvider.ts of the component Prompt Handler. Performing manipulation results in injection. The attack can be initiated remotely. The exploit is now public and may be used. Applying a patch is the recommended action to fix this issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.