agentscope 0.1.3 vulnerabilities

Known vulnerabilities in the agentscope package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
H Cross-site Request Forgery (CSRF) agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Cross-site Request Forgery (CSRF) due to overly permissive CORS headers in `_app.py`. How to fix Cross-site Request Forgery (CSRF)? There is no fixed version for `agentscope`.	[0,)
H Directory Traversal agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Directory Traversal via the `download_file` method. An attacker can access sensitive information, including configuration files and credentials, by exploiting this method to download any file from the host. How to fix Directory Traversal? There is no fixed version for `agentscope`.	[0,)
H Directory Traversal agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Directory Traversal through the `path` parameter due to improper input sanitization. An attacker can read arbitrary files on the server by manipulating the input to traverse the directory structure. How to fix Directory Traversal? There is no fixed version for `agentscope`.	[0,)
H External Control of File Name or Path agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to External Control of File Name or Path through the `/read-examples` endpoint. An attacker can read any local JSON file, containing API keys by sending a crafted POST request. How to fix External Control of File Name or Path? There is no fixed version for `agentscope`.	[0,)
C Deserialization of Untrusted Data agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the `AgentServerServicer.create_agent` method. An attacker can execute arbitrary commands on the server by deserializing untrusted data using the dill library. How to fix Deserialization of Untrusted Data? There is no fixed version for `agentscope`.	[0,)
H Relative Path Traversal agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Relative Path Traversal through the `save-workflow` functionality. An attacker can write arbitrary JSON files on the filesystem by exploiting this vulnerability. How to fix Relative Path Traversal? There is no fixed version for `agentscope`.	[0,)
M Origin Validation Error agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Origin Validation Error due to the CORS configuration on the server. An attacker can access unauthorized data and disclose information by sending requests from untrusted origins. How to fix Origin Validation Error? There is no fixed version for `agentscope`.	[0,)
M Cross-site Scripting (XSS) agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Cross-site Scripting (XSS) via the `dashboard.js` view for inspecting detailed run information. An attacker can execute arbitrary JavaScript code in the context of the user's browser by appending and rendering a user-controllable string (run ID) as HTML. How to fix Cross-site Scripting (XSS)? There is no fixed version for `agentscope`.	[0,)
C Eval Injection agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Eval Injection via the `result = eval(s)` field of the `is_callable_expression` function in the `agentscope\web\workstation\workflow_utils.py` file. An attacker can execute arbitrary code by providing malicious input to this function. How to fix Eval Injection? There is no fixed version for `agentscope`.	[0,)
C Arbitrary Code Injection agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Arbitrary Code Injection. This vulnerability is caused by an incomplete fix for SNYK-PYTHON-AGENTSCOPE-8145542. The applied black-list to filter out dangerous commands can be simply bypassed. For example, the attackers can run `rm --rf` (note that there are more than one space character in between the `rm` and `-rf`) to bypass the check as the blocked item only has one space in between. Moreover, the current black-list also overlooked many other dangerous commands such as `netcat`, the hackers can simply create a backdoor by the command `nc -lvvp 6666 -e /bin/sh` to enable a remote shell and then log into the victim system to run arbitrary commands as follows. How to fix Arbitrary Code Injection? There is no fixed version for `agentscope`.	[0,)

Vulnerability

Vulnerable Version

Cross-site Request Forgery (CSRF)

agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform.

Affected versions of this package are vulnerable to Cross-site Request Forgery (CSRF) due to overly permissive CORS headers in _app.py.

How to fix Cross-site Request Forgery (CSRF)?