Vulnerability in Langroid Framework's Neo4jChatAgent Allows Prompt Injection
CVE-2026-55615
9.2CRITICAL
What is CVE-2026-55615?
The Langroid framework, specifically its Neo4jChatAgent, contains a vulnerability that allows prompt injection due to the lack of validation when processing LLM-generated Cypher queries. This issue enables attackers to manipulate the query text, potentially leading to the unauthorized viewing or destruction of graph data. Furthermore, if APOC or dbms.security procedures are enabled, attackers can gain access to OS commands and filesystem operations. The vulnerabilities were not addressed in earlier versions, including a previous similar issue fixed in version 0.63.0. A solution is provided in version 0.65.5, which includes necessary validations.
Affected Version(s)
langroid < 0.65.5
