CVE-2026-44504
HIGH SEVERITYVulnerability Description
Aegra has cross-user run injection in /threads/{thread_id}/runs (IDOR)
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
pip
Product
aegra-api
External References
- https://github.com/aegra/aegra/security/advisories/GHSA-m98r-6667-4wq7
- https://github.com/aegra/aegra/issues/336
- https://github.com/aegra/aegra/pull/337
- https://github.com/aegra/aegra/commit/e1b2042254fd49072ca281bc35b3f2a3bed74b31
- https://github.com/aegra/aegra/releases/tag/v0.9.7
- https://github.com/advisories/GHSA-m98r-6667-4wq7
Discussion (0)
Add Comment
No comments yet. Be the first!