Bounties
Partners
Community
Info
huggingface / smolagents
Project repository
🤗 smolagents: a barebones library for agents that think in python code.
Submit a report
FIRST INTERACTION
WITHIN
43 DAYS
REVIEW
WITHIN
45 DAYS
FIX
WITHIN
97 DAYS
LocalPythonExecutor sandbox escape leading to Remote Code Execute(RCE)
Jul 30th 2025
zoiltin
•
duplicate
High
Remote Code Execution Vulnerability in Smolagents MCPClient
Jul 22nd 2025
bayuncao-bit
•
duplicate
High
Executing LLM generated code from searching Internet content can escape LocalPyt...
Jul 30th 2025
quitbug
•
duplicate
Critical
Remote Code Execution via PythonInterpreterTool in HuggingFace SmolAgents
Jun 23rd 2025
scodesain
•
not applicable
Unsafe Pickle Deserialization in smolagents Leads to RCE
Jul 23rd 2025
jplopezy
•
informative
Critical
LLM06: Insecure Code Execution
Jun 23rd 2025
hackwithaj
•
spam
Server Side Template Injection
Jul 22nd 2025
omjeki
•
informative
High
Hugging Face API Key Exposure with Elevated Permissions
Jun 23rd 2025
vadivelr18
•
not applicable
Improper Input Validation Allows Arbitrary Code Execution via --imports in smola...
May 7th 2025
surajtekale
•
not applicable
Prompt Replay via Gradio UI Enables Agent Control Injection
Jul 23rd 2025
darkeeeandme
•
informative
Critical
Unvalidated External Tool Injection via MCPClient Enables Symbolic RCE
Jul 22nd 2025
darkeeeandme
•
informative
Critical
Prompt Injection Enables Reflexive RCE via PythonInterpreterTool
Jun 23rd 2025
darkeeeandme
•
not applicable
Symbolic Reflex Execution via Dynamic AST Imports in local_python_executor.py
Jul 22nd 2025
darkeeeandme
•
informative
High
Remote Code Execution via Insecure Authorized Imports in CodeAgent
Jun 23rd 2025
h-h-e
•
spam
Arbitrary Code Execution and Sensitive Data Exfiltration via load_tool Trust Rem...
May 15th 2025
dickytrianza
•
spam
ReDos in _parse_google_format_docstring
Jun 17th 2025
lonelyuan
•
informative
Medium
Remote code execution caused by prompt injection
May 20th 2025
tuantv89
•
self closed
Remote Code Execution in SmolAgents v1.14.0 via Unsafe pickle.loads() on Untrust...
Jun 10th 2025
michaelpierre
•
informative
Critical
Uncaught exception in sandbox can lead to DOS
May 23rd 2025
tasosy2k
•
informative
High
Unrestricted Jinja2 Template Rendering in populate_template Allows Remote Code E...
May 23rd 2025
taiphung217
•
informative
Critical
Python sandbox escape leading to Remote Code Execution (RCE)
Jul 27th 2025
superboy-zjc
•
High
•
$250
High
•
$250
•
CVE-2025-5120
CVE-2025-5120
Sandbox Escapes found in LocalPythonExecutor affecting version 1.13.0
May 23rd 2025
jackfromeast
•
informative
Critical
System Prompt Leakage
May 23rd 2025
rook1337
•
not applicable
CRITICAL
$500
HIGH
$250
MEDIUM
$41.666666666666664
LOW
$6.666666666666667
