CVE-2026-30273

Published
View on NVD ↗
CVSS v3
7.3
HIGH
CVSS v2
N/A
Affected
1
PROJECT

Description

pandas-ai v3.0.0 was discovered to contain a SQL injection vulnerability via the pandasai.agent.base._execute_sql_query component.

sinaptik-ai/pandas-ai
sinaptik-ai/pandas-ai
Chat with your database or your datalake (SQL, CSV, parquet). PandasAI makes data analysis conversational using LLMs and RAG.
GitHubGitHub
23.6K