CVE-2025-46726: Langroid Allows XXE Injection via XMLToolMessage
A LLM application leveraging XMLToolMessage class may be exposed to untrusted XML input that could result in DoS and/or exposing local files with sensitive information.
References
- github.com/advisories/GHSA-pw95-88fg-3j6f
- github.com/langroid/langroid
- github.com/langroid/langroid/blob/df6227e6c079ec22bb2768498423148d6685acff/langroid/agent/xml_tool_message.py
- github.com/langroid/langroid/commit/36e7e7db4dd1636de225c2c66c84052b1e9ac3c3
- github.com/langroid/langroid/security/advisories/GHSA-pw95-88fg-3j6f
- nvd.nist.gov/vuln/detail/CVE-2025-46726
Code Behaviors & Features
Detect and mitigate CVE-2025-46726 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →