VulnWatch VulnWatch
← Back to dashboard
Medium osv ยท GHSA-655w-fm8m-m478

LangChain Server Side Request Forgery vulnerability

Published Oct 19, 2023 CVSS 4.0
LangChain before 0.0.317 allows SSRF via `document_loaders/recursive_url_loader.py` because crawling can proceed from an external server to an internal server.
SSRF

Affected AI Products

langchain
View original source