VYPR

Awesome LLM Apps

by Theunwindai

CVEs (2)

  • CVE-2026-29872HigMar 30, 2026
    risk 0.53cvss 8.2epss 0.00

    A cross-session information disclosure vulnerability exists in the awesome-llm-apps project in commit e46690f99c3f08be80a9877fab52acacf7ab8251 (2026-01-19). The affected Streamlit-based GitHub MCP Agent stores user-supplied API tokens in process-wide environment variables using…

  • CVE-2026-29871HigMar 27, 2026
    risk 0.49cvss 7.5epss 0.01

    A path traversal vulnerability exists in the awesome-llm-apps project in commit e46690f99c3f08be80a9877fab52acacf7ab8251 (2026-01-19) in the Beifong AI News and Podcast Agent backend in FastAPI backend, stream-audio endpoint, in file routers/podcast_router.py, in function…