Kilo-Org/kilocode

Releases436

Frequency1 day

Last Release about 3 hours ago

Stars19.8K

Kilo is the all-in-one agentic engineering platform. Build, ship, and iterate faster with the most popular open source coding agent.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-11445 ↗	Oct 8, 2025Wednesday, 8 October 2025, 09:15	6.3 MEDIUM	7.5 HIGH
A vulnerability was detected in Kilo Code up to 4.86.0. Affected is the function ClineProvider of the file src/core/webview/ClineProvider.ts of the component Prompt Handler. Performing manipulation results in injection. The attack can be initiated remotely. The exploit is now public and may be used. Applying a patch is the recommended action to fix this issue.