GHSA-8mf9-rmgw-33qc
Suggest an improvement- Source
- https://github.com/advisories/GHSA-8mf9-rmgw-33qc
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/10/GHSA-8mf9-rmgw-33qc/GHSA-8mf9-rmgw-33qc.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/GHSA-8mf9-rmgw-33qc
- Aliases
- Published
- 2025-10-22T15:31:11Z
- Modified
- 2025-10-22T20:27:42.447092Z
- Severity
-
- 5.4 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N CVSS Calculator
- Summary
- Hugging Face Smolagents XPath injection vulnerability in the search_item_ctrl_f function
- Details
-
Hugging Face Smolagents version 1.20.0 contains an XPath injection vulnerability in the searchitemctrlf function located in src/smolagents/visionweb_browser.py. The function constructs an XPath query by directly concatenating user-supplied input into the XPath expression without proper sanitization or escaping. This allows an attacker to inject malicious XPath syntax that can alter the intended query logic. The vulnerability enables attackers to bypass search filters, access unintended DOM elements, and disrupt web automation workflows. This can lead to information disclosure, manipulation of AI agent interactions, and compromise the reliability of automated web tasks. The issue is fixed in version 1.22.0.
- Database specific
{ "cwe_ids": [ "CWE-643" ], "severity": "MODERATE", "github_reviewed_at": "2025-10-22T19:38:34Z", "github_reviewed": true, "nvd_published_at": "2025-10-22T14:15:49Z" }- References
Affected packages
PyPI / smolagents
Package
- Name
- smolagents
- View open source insights on deps.dev
- Purl
- pkg:pypi/smolagents
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.22.0