CVE-2026-11481 | yoanbernabeu grepai up to 0.35.0 Postgres Embedding Cache indexer/chunker.go PostgresStore.LookupByContentHash content_hash weak hash (Issue 249)

A vulnerability was found in yoanbernabeu grepai up to 0.35.0 and classified as problematic. The affected element is the function PostgresStore.LookupByContentHash of the file indexer/chunker.go of the component Postgres Embedding Cache. Executing a manipulation of the argument content_hash can lead to use of weak hash.

This vulnerability is registered as CVE-2026-11481. The attack needs to be launched locally. Furthermore, an exploit is available.

The pull request to fix this issue awaits acceptance.VulDB Recent EntriesRead More