Langchain-ai Langchainjs

3 CVEs affecting Langchain-ai Langchainjs. Latest disclosed: 2026-02-25. Critical: 0, High: 1.

Top CVEs affecting Langchain-ai Langchainjs
CVESeverityScorePublishedSummary
CVE-2025-68665High8.62025-12-23LangChain is a framework for building LLM-powered applications. Prior to @langchain/core versions 0.3.80 and 1.1.8, and prior to langchain versions 0.3.37 and…
CVE-2026-27795Medium4.12026-02-25LangChain is a framework for building LLM-powered applications. Prior to version 1.1.8, a redirect-based Server-Side Request Forgery (SSRF) bypass exists in `R…
CVE-2026-26019Medium4.12026-02-11LangChain is a framework for building LLM-powered applications. Prior to 1.1.14, the RecursiveUrlLoader class in @langchain/community is a web crawler that rec…