SQL Injection in Langroid

CVE-2026-50180

Langroid is a framework for building large-language-model-powered applications. Prior to version 0.64.0, `SQLChatAgent` in `langroid` ships a `_validate_query` defense-in-depth layer whose `_DANGEROUS_SQL_PATTERNS` regex blocklist enumerat…

Vulnerability class: Path Traversal (Directory Traversal)

Affected products

Weakness classification (CWE)

References