pptagent 1.1.34

Direct Vulnerabilities

Known vulnerabilities in the pptagent package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Directory Traversal pptagent is an An Agentic Framework for Reflective PowerPoint Generation Affected versions of this package are vulnerable to Directory Traversal via the `markdown_table_to_image` function. An attacker can create or overwrite arbitrary files and directories by supplying crafted input that manipulates file paths. How to fix Directory Traversal? Upgrade `pptagent` to version 1.1.36 or higher.	[,1.1.36)
H Eval Injection pptagent is an An Agentic Framework for Reflective PowerPoint Generation Affected versions of this package are vulnerable to Eval Injection via the `eval` function when processing code generated by large language models with built-in functions available in the execution scope. An attacker can execute arbitrary Python code by supplying malicious input that is evaluated by the system. How to fix Eval Injection? Upgrade `pptagent` to version 1.1.36 or higher.	[,1.1.36)
M Directory Traversal pptagent is an An Agentic Framework for Reflective PowerPoint Generation Affected versions of this package are vulnerable to Directory Traversal via the `save_generated_slides` function. An attacker can overwrite or create arbitrary files on the system by supplying crafted input when invoking this function. How to fix Directory Traversal? Upgrade `pptagent` to version 1.1.36 or higher.	[,1.1.36)

Vulnerability

Vulnerable Version

Directory Traversal

pptagent is an An Agentic Framework for Reflective PowerPoint Generation

Affected versions of this package are vulnerable to Directory Traversal via the markdown_table_to_image function. An attacker can create or overwrite arbitrary files and directories by supplying crafted input that manipulates file paths.

How to fix Directory Traversal?

Upgrade pptagent to version 1.1.36 or higher.

[,1.1.36)

Eval Injection

pptagent is an An Agentic Framework for Reflective PowerPoint Generation

Affected versions of this package are vulnerable to Eval Injection via the eval function when processing code generated by large language models with built-in functions available in the execution scope. An attacker can execute arbitrary Python code by supplying malicious input that is evaluated by the system.

How to fix Eval Injection?

Upgrade pptagent to version 1.1.36 or higher.

[,1.1.36)

Directory Traversal

pptagent is an An Agentic Framework for Reflective PowerPoint Generation

Affected versions of this package are vulnerable to Directory Traversal via the save_generated_slides function. An attacker can overwrite or create arbitrary files on the system by supplying crafted input when invoking this function.

How to fix Directory Traversal?

Upgrade pptagent to version 1.1.36 or higher.

[,1.1.36)

pptagent@1.1.34

An Agentic Framework for Reflective PowerPoint Generation

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities

Fix vulnerabilities automatically