CVE-2026-33654 | HKUDS nanobot up to 0.1.5 Email Channel Handler email.py code injection (GHSA-4gmr-2vc8-7qh3)

A vulnerability was found in HKUDS nanobot up to 0.1.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file nanobot/channels/email.py of the component Email Channel Handler Module. This manipulation causes code injection.

This vulnerability is registered as CVE-2026-33654. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More