Description
A vulnerability was found in ScrapeGraphAI scrapegraph-ai up to 1.74.0. The affected element is the function create_sandbox_and_execute of the file scrapegraphai/nodes/generate_code_node.py of the component GenerateCodeNode Component. The manipulation results in os command injection. The attack may be launched remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-04-05
Score: 5.3 Medium
EPSS: 1.4% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An operating system command injection flaw exists in the create_sandbox_and_execute function of the GenerateCodeNode component of ScrapeGraphAI scrapegraph-ai. By supplying crafted input, an attacker can cause arbitrary commands to be executed on the host machine, potentially compromising confidentiality, integrity, and availability. The vulnerability can be triggered remotely and has been disclosed publicly.

Affected Systems

ScrapeGraphAI scrapegraph-ai versions up to 1.74.0 are vulnerable. The flaw resides in the GenerateCodeNode component’s create_sandbox_and_execute routine.

Risk and Exploitability

The CVSS score of 5.3 indicates moderate severity, and the EPSS score of approximately 1.45% (≈0.01449) suggests a low but non‑zero likelihood of exploitation. The exploit is public, can be launched remotely, and no official patch has been released, increasing the risk. The vulnerability is not listed in the CISA KEV catalog. Attackers can remotely invoke the vulnerable function, leading to command execution on the underlying operating system.

Generated by OpenCVE AI on June 18, 2026 at 13:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Check ScrapeGraphAI for an updated release or security advisory addressing the create_sandbox_and_execute command‑injection flaw.
  • If no patch is available, restrict or block external access to the GenerateCodeNode API or the endpoint that triggers create_sandbox_and_execute to prevent exploitation.
  • Continuously monitor system logs and audit trails for unexpected command execution or abnormal activity originating from the GenerateCodeNode component.
  • Consider implementing network segmentation or firewall rules that limit the exposed services of ScrapeGraphAI to trusted hosts only.

Generated by OpenCVE AI on June 18, 2026 at 13:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 07 Apr 2026 00:00:00 +0000

Type Values Removed Values Added
First Time appeared Scrapegraphai
Scrapegraphai scrapegraph-ai
Vendors & Products Scrapegraphai
Scrapegraphai scrapegraph-ai

Mon, 06 Apr 2026 20:00:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Sun, 05 Apr 2026 02:00:00 +0000

Type Values Removed Values Added
Description A vulnerability was found in ScrapeGraphAI scrapegraph-ai up to 1.74.0. The affected element is the function create_sandbox_and_execute of the file scrapegraphai/nodes/generate_code_node.py of the component GenerateCodeNode Component. The manipulation results in os command injection. The attack may be launched remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title ScrapeGraphAI scrapegraph-ai GenerateCodeNode generate_code_node.py create_sandbox_and_execute os command injection
Weaknesses CWE-77
CWE-78
References
Metrics cvssV2_0

{'score': 7.5, 'vector': 'AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}


Subscriptions

Scrapegraphai Scrapegraph-ai
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-04-06T17:58:29.800Z

Reserved: 2026-04-04T06:33:31.353Z

Link: CVE-2026-5532

cve-icon Vulnrichment

Updated: 2026-04-06T17:58:25.839Z

cve-icon NVD

Status : Deferred

Published: 2026-04-05T02:16:01.403

Modified: 2026-06-17T10:59:10.897

Link: CVE-2026-5532

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-18T13:30:05Z

Weaknesses
  • CWE-77

    Improper Neutralization of Special Elements used in a Command ('Command Injection')

  • CWE-78

    Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')