VYPR
Vendor

Xlang

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2024-34524CriMay 6, 2024
    risk 0.59cvss 9.1epss 0.01

    In XLANG OpenAgents through fe73ac4, the allowed_file protection mechanism can be bypassed by using an incorrect file extension for the nature of the file content.

  • CVE-2025-6282MedJun 19, 2025
    risk 0.36cvss 5.5epss 0.01

    A vulnerability was found in xlang-ai OpenAgents up to ff2e46440699af1324eb25655b622c4a131265bb and classified as critical. Affected by this issue is the function create_upload_file of the file backend/api/file.py. The manipulation leads to path traversal. The exploit has been…