Langchain-ai Langchainjs
3 CVEs affecting Langchain-ai Langchainjs. Latest disclosed: 2026-02-25. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-68665 | High | 8.6 | 2025-12-23 | LangChain is a framework for building LLM-powered applications. Prior to @langchain/core versions 0.3.80 and 1.1.8, and prior to langchain versions 0.3.37 and… |
CVE-2026-27795 | Medium | 4.1 | 2026-02-25 | LangChain is a framework for building LLM-powered applications. Prior to version 1.1.8, a redirect-based Server-Side Request Forgery (SSRF) bypass exists in `R… |
CVE-2026-26019 | Medium | 4.1 | 2026-02-11 | LangChain is a framework for building LLM-powered applications. Prior to 1.1.14, the RecursiveUrlLoader class in @langchain/community is a web crawler that rec… |