lollms vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-1115Criticallollms: parisneo/lollms vulnerable to stored XSS in the social featureCVE-2026-1163Mediumlollms: parisneo/lollms has an insufficient session expiration vulnerabilityCVE-2026-1117Highlollms: Lollms has an Improper Access Control vulnerabilityCVE-2025-6386Highlollms: Lord of Large Language Models vulnerable to Observable Discrepancy attack via authenticate_user…CVE-2024-6982Highlollms: LoLLMS Code Injection vulnerabilityCVE-2024-6581Mediumlollms: Lollms vulnerable to Cross-site ScriptingCVE-2024-6985Mediumlollms: Lord of Large Language Models (LoLLMs) path traversal vulnerability in the api…CVE-2024-6971Lowlollms: Lord of Large Language Models (LoLLMs) Server path traversal vulnerability in lollms_file_system.pyCVE-2024-6281Highlollms: LoLLMS vulnerable to Expected Behavior ViolationCVE-2024-5824Highlollms: lollms path traversal vulnerability allows overriding of config.yaml file, leading to RCECVE-2024-6139Highlollms: lollms vulnerable to dot-dot-slash path traversal in XTTS serverCVE-2024-6085Highlollms: lollms vulnerable to path traversal due to unauthenticated root folder settings changeCVE-2024-3121Mediumlollms: Remote Code Execution in create_conda_env function in lollmsCVE-2024-5443Criticallollms: Remote Code Execution via path traversal bypass in lollmsCVE-2024-4315Criticallollms: parisneo/lollms Local File Inclusion (LFI) attackCVE-2024-3429Highlollms: LoLLMS Path Traversal vulnerabilityCVE-2024-4881Highlollms: LoLLMS Path Traversal vulnerabilityCVE-2024-4330Mediumlollms: path traversal vulnerability was identified in the parisneo/lollms-webui CVE-2024-4078Highlollms: LoLLMS Command Injection vulnerability

Stop the waste.
Protect your environment with Kodem.